CSC 495/693: Software Security
Spring 2022
Department of Computer ScienceUNC Greensboro
Class Meetings: Tues/Thurs 3:30-4:45, Petty 217
Instructor
E-mail:
Office Hours: Tues/Thurs 1:45-3:15 (or by appointment)
Office hours in person or through Zoom – see Canvas for Zoom link or email for more information
Special Note for Spring 2022
This is an in-person class, and certain policies and protections must be followed to protect everyone during the ongoing COVID-19 pandemic. For more information on UNCG and class policies, please see the class syllabus.
Overview
This course will cover common vulnerabilities in software, and how software bugs can have serious security consequences. We will consider buffer overflows, return-oriented programming, stack smashing, integer overflow, SQL injection, cross-site scripting, and other classes of vulnerabilities. We will also look at techniques for avoiding these vulnerabilities, ranging from good programming practices to the use of static analysis and other tools. The course will be experimental, with students locating, exploiting, and fixing vulnerabilities throughout the semester.