deSCISion | SMU SCIS Academic and Career Planning Platform

Description

Software and systems security aims in equipping students with the fundamental concepts in software and systems security, as well as basic hands-on skills in understanding, analyzing, and protecting a software program and a computer system. Each lesson spends roughly 50% of the time on fundamental concepts (lecturing) and 50% of the time on hands-on exercises/assessments. Assessments focus on hands-on projects.

Attributes

Department: SCIS

Course Level: Undergraduate

Tracks: CS/IS: Cybersecurity Track CS: Cyber-Physical Systems Track IS Major: Software Development Track IS/T4BS: Product Development Track

Areas: Advanced Business Technology Major Business Options Econ Major Rel/Econ Options IS Depth Electives Social Sciences/PLE Major-related Technology & Entrepreneurship

Learning Outcomes

1. Understand what buffer overflow is and how it is introduced in C programming 2. Create exploits to buffer overflow vulnerabilities to modify critical data 3. Create exploits to buffer overflow vulnerabilities to inject and execute shellcode 4. Understand simple ways of defending against buffer overflow exploits 5. Understand what format string vulnerabilities are and how they are introduced in C programming 6. Create exploits to format string vulnerabilities to read any arbitrary memory location 7. Create exploits to format string vulnerabilities to write to any arbitrary memory location 8. Create return-to-libc exploits to execute a libc library function call 9. Create return-to-libc exploits to chain multiple libc library function calls 10. Demonstrate how vulnerabilities are introduced in real-world programs, how the corresponding exploits work, and how common defense mechanism works

Description

Requisites

Attributes

Learning Outcomes

Graduate Learning Outcomes

Competencies