Formerly ENPM809A. The goal of this course is to provide students with a foundational understanding of cryptography as used in the real world. Students will learn about private-key encryption, message authentication codes, key-exchange protocols, ... public-key encryption, and digital signatures, in addition to learning about underlying primitives such as pseudorandom number generators, block ciphers, and hash functions. In addition, the course will cover the “cryptographic mindset,” including formal threat modeling and proofs of security. The course will emphasize real-world usage of cryptography by discussing standards and best practices, and through programming assignments meant to reinforce the concepts covered in class. No prior background in cryptography will be assumed; however, students will be expected to have mathematical maturity and knowledge of C programming. Learning outcomes: Understanding of basic cryptographic primitives and schemes, and when they are appropriate. Ability to carry out basic security analysis of new constructions. Knowledge of current best practices and standards for the use of cryptography. Ability to implement basic cryptographic functionality.

Spring 2021 Tu 4:00pm - 6:40pm Gananand Kini , Robert Heinemann
Formerly ENPM809I. Computers pervade our everyday lives. However, desktops and laptops are just the tip of the iceberg representing just 2% of microprocessors produced. Hidden just beneath the surface is a substantial and diverse group of computers ... referred to as embedded systems. This massive category of machines represents the other 98% of processors produced today. This invisible but pervasive hardware underpins our society’s most critical functions and they are being hacked. The purpose of this course is to reveal the tools, techniques and procedures (TTPs) employed by adversaries to exploit and subvert the security of embedded systems. This course will cover core concepts and techniques to analyze and characterize the behavior of embedded systems and platforms. Concepts will be introduced and discussed within the context of an adversary intent on altering or subverting the behavior of such systems. The course does not expect students to have any prior embedded systems experience. At the conclusion of this course the student will be familiar with: Embedded system basics; Basic soldering techniques; Board analysis methodology; Identification of peripherals, data buses, diagnostic ports and tap points; Device instrumentation; Bus monitoring and decoding; Development access via JTAG; Tools used for ARM & MIPS assembly/disassembly; How shellcode is formatted; Return oriented programming attacks; Attacks similar to x86 platform.

Students will implement a robust incident response methodology, including proper forensic handling of evidence, and cover legal aspects of national and international law regarding forensics. The bulk of the course covers evidence acquisition, ... preservation, analysis and reporting on multiple platforms.
Previoulsy offered as ENPM808P. Prerequisites: Experience with both Windows and Unix-based operating systems, including using the command line. Intermediate Windows and Linux skills, familiarity with file system concepts.

Spring 2021 Th 4:00pm - 6:40pm Dharmalingam Ganesan
As software gets more complex, there is even more potential for vulnerabilities to remain in the production version. While traditional and emerging software testing methods are very good at detecting a large majority of "bugs" in the software, ... modifications to the methods are necessary to ensure vulnerabilities related to security are discovered and mitigated prior to release. In industry, there is also a cost-benefit analysis that determines the limits to pre-release testing, further enforcing the need to uniquely identify security vulnerabilities, potentially prioritizing their correction over other vulnerabilities. This course will cover methods of building security in from the beginning of development and testing the resulting software to ensure security vulnerabilities are detected. The course will use a mixture of textbook principles and research papers to cover the concepts. Students will also complete a course project.
Prerequisite: ENPM691 and CMSC106

Cloud computing has become a major force in the IT industry and enables anyone to quickly deploy an enterprise-ready IT environment with only a few clicks of a button. With all of that power comes great responsibility and significant risk. ... While many of the risks are the same risk a traditional IT environment faces there are many new risks in the cloud and we will explore options to mitigate those risks. This course will cover the fundamentals of securing cloud-based workloads from the ground up with many hands on examples. Through these hands on exercises the course will demonstrate where the similarities and differences are when securing the cloud compared to securing traditional IT. Topics include cloud-specific issues when designing secure applications, managing identity and access, protecting data, handling incident response, conducting penetration tests, and forensics in the cloud. In addition to a final project students will perform hands on exercises as well as assignments to reinforce the lecture material. While we wil primarily focus on Infrastructure-as-a-Service we will also discuss Platform-as-a-Service and Software-as-a-Service, specifically around security considerations for those services. Students taking this course should be familiar with a wide variety of security tools and will find it helpful to have an understanding of to decipher and write in a scripting language

ENPM809K
This course presents the foundations of artificial intelligence (AI) and prepares students to use deep learning frameworks such as Tensoflow and Keras. We begin by a broad introduction to machine learning and understand the concepts of cost ... and loss functions in linear and logistic regressions. We show how supervise learning logistic regression is a special case of a neural network. We learn how to build a neural network and implement it using Python. We cover a variety of recent advances in deep learning methods utilized in healthcare, autonomous driving, sign language reading, music generation, and natural language processing. These methods include Convolutional Neural Networks (CNNs), Real-time Object Detection, Face Recognition, Neural Style Transfer, RNNs, LSTM, Adam, Dropout, BatchNorm, Xavier/He initialization. Students will learn necessary Python tools and use Tensorflow and Keras to implement these methods. This course also offers a systematic method for error analysis, identifying bias and overfitting, regularization tunning and choosing the proper hyperparameters for deep learning modules to lead successful machine learning projects. The objective of this course is to prepare students who have minimal knowledge of math and programming to successfully use deep frameworks in practice, although the course will touch base on the theory behind the deep learning as well. Students do not need to be completely familiar with Python before taking this course as we cover the Python tools necessary to implement neural networks. The mathematics background at the level of Calculus I is sufficient. The course provides an overview on Matrix algebra used in deep learning frameworks. At the end of this course, students will be specialized in deep learning, have a complete understanding of different aspect of artificial intelligence (AI), and be able to use Python, Tensorflow and Keras to design and implement deep learning models in their careers.

This course will give students a hands-on deep dive into penetration testing tools and methodologies. Starting with reconnaissance, open source intelligence, and vulnerability scanning we will move on to exploiting both clients and servers, ... moving laterally through a network while evading security measures. OWAP Top 10 will be covered and hands-on exercises will reinforce how to discover these types of vulnerabilities on a penetration test. We will also cover vulnerability disclosure and communicating the results of a penetration test with all levels of clients, from security engineers to C-level executives.

Decentralized cryptocurrencies and blockchain applications such a Bitcoin and Ethereum have emerged as a highly disruptive technology that enable, for example, monetary transactions and the execution of smart contracts without the control of ... a central authority. They have sparked the interest of of computer scientists, economists and policy makers and promise to revolutionize the way we think about our financial infrastructure. This graduate class will cover the technical background behind decentralized cryptocurrencies protocols and will introduce students to research on the security and privacy of blockchain technologies.