To do well in this course, you should ideally have maturity in both the mathematics of computer science and in the engineering of computer systems. This means that you should: have a good understanding of data structures and algorithms; be comfortable writing programs from scratch in C, Java, and a scripting language like Python or JavaScript; be comfortable writing and debugging assembly code; and be reasonably comfortable in a command-line Unix development environment (gdb, gcc, etc). You should also have a good understanding of computer architecture, operating systems, and computer networks. It would also help to know a bit about programming languages and compilers. It would also be helpful to be comfortable with web technologies such as HTML and JavaScript. Recommended (not required) prerequisites are CO331 (Web and network security) • CO211 Operating systems • CO212 Networks and Communications Related courses: • CO408H Privacy Enhancing Techniques • CO409 Cryptography• CO440 Software Reliability • CO470 Program Analysis.

Don't panic

Do not be scared if the list above seems a bit daunting: it is not likely that many of the enrolled students will have the "perfect" background in all of these topics. If you are missing a few of these skills, you should be able to learn them quickly, possibly with the assistance of our helpful TAs. You will need to learn things as you encounter them; this is a feature, not a bug. Most importantly, you should be eager to challenge yourself and learn!


This year, there will be only one required textbook for this course: Foundations of Security, Daswani, Kern, and Kesavan, ISBN 1-59059-784-2. This book should be available from the University bookstore and other retailers. Note, however, that there will be other handouts and supplementary reading materials that will be posted on the class schedule. You will need to read these before each class. These articles will often have a research focus, which frequently means that you will need to spend more some time on each, perhaps marking them up as you read. Please refer to these helpful guides on how to read research papers critically: link-1, link-2, link-3. Through these readings, you will be exposed to some topics that are "off the beaten path" and get more exposure to bleeding-edge research in computer security.

Course Staff


  • Time: Monday 14:00--16:00
  • Room:: Huxley 308

Class schedule

This schedule is subject to modification; please check back often...

# Date Description Reading Assessment
October 9, 2017
October 16, 2017
October 23, 2017
October 30, 2017
November 6, 2017
November 13, 2017
November 20, 2017
November 27, 2017



Available via CATE: Nov 14--Nov 28, 2017. Please read the instructions on the first page carefully.


December 12, 2017 at 11:40. Exam duration is 70 minutes.

Your mark

  • 15% Homework
  • 85% Final exam

Contact Us