CMSC 614: Computer and Network Security

Reading Responses

Most classes, there will be one or two papers assigned as required reading (those sidelined in blue below). Ahead of time, each student will individually submit responses to the readings.

As a rough guideline, think about it as if you just saw the paper at a conference and were explaining it to someone in the field. What's the gist, what's the idea, how well did they demonstrate it, and what did you particularly enjoy/take issue with — these are all fine things to include.

Class HotCRP

For each required paper, we will provide you with specific questions to respond to:

The responses should comprise 1-2 paragraphs per paper.
The goal is not to prove that you read the paper, but that you understand the paper.
So that I have time to read them and give feedback, please turn them in by 3pm the day before class (3pm Monday for Tuesday classes, and 3pm Wednesday for Thursday classes).

No Encore for Encore? Ethical questions for web-based censorship measurement, Arvind Narayanan, Bendert Zevenbergen
You Do (Not) Belong Here: Detecting DPI Evasion Attacks with Context Learning, Shitong Zhu, Shasha Li, Zhongjie Wang, Xun Chen, Zhiyun Qian, Srikanth V. Krishnamurthy, Kevin S. Chan, Ananthram Swami
Keys Under Doormats: Mandating Security by Requiring Government Access to All Data and Communications, Harold Abelson, Ross Anderson, Steven M. Bellovin, Josh Benaloh, Matt Blaze, Whitfield Diffie, John Gilmore, Matthew Green, Susan Landau, Peter G. Neumann, Ronald L. Rivest, Jeffrey I. Schiller, Bruce Schneier, Michael Specter, Daniel J. Weitzner

9/7 Cryptography Background

The First Few Milliseconds of an HTTPS Connection, Jeff Moser

Multi-Context TLS (mcTLS): Enabling Secure In-Network Functionality in TLS, David Naylor, Kyle Schomp, Matteo Varvello, Ilias Leontiadis, Jeremy Blackburn, Diego Lopez, Konstantina Papagiannaki, Pablo Rodriguez Rodriguez, Peter Steenkiste
Keyless SSL: The Nitty Gritty Technical Details, Nick Sullivan

9/12 The Certificate Ecosystem

Analysis of SSL Certificate Reissues and Revocations in the Wake of Heartbleed, Liang Zhang, Dave Choffnes, Tudor Dumitras, Dave Levin, Alan Mislove, Aaron Schulman, Christo Wilson

SoK: SSL and HTTPS: Revisiting past challenges and evaluating certificate trust model enhancements, Jeremy Clark, Paul C. van Oorschot
ZMap: Fast Internet-wide Scanning and Its Security Applications, Zakir Durumeric, Eric Wustrow, J. Alex Halderman
A Tangled Mass: The Android Root Certificate Store, Narseo Vallina-Rodriguez, Johanna Amann, Christian Kreibich, Nicholas Weaver, Vern Paxson
Measurement and Analysis of Private Key Sharing in the HTTPS Ecosystem, Frank Cangialosi, Taejoong Chung, David Choffnes, Dave Levin, Bruce M. Maggs, Alan Mislove, Christo Wilson
CRLite: A Scalable System for Pushing All TLS Revocations to All Browsers, James Larisch, David Choffnes, Dave Levin, Bruce M. Maggs, Alan Mislove, Christo Wilson

9/14 Networking Background

9/19 Crypto Failures in Practice

Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices, Nadia Heninger, Zakir Durumeric, Eric Wustrow, J. Alex Halderman

Measuring the Security Harm of TLS Crypto Shortcuts, Drew Springall, Zakir Durumeric, J. Alex Halderman
The Most Dangerous Code in the World: Validating SSL Certificates in Non-Browser Software, Martin Georgiev, Subodh Iyengar, Suman Jana, Rishita Anubhai, Dan Boneh, Vitaly Shmatikov
Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice, David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green, J. Alex Halderman, Nadia Heninger, Drew Springall, Emmanuel Thomé, Luke Valenta, Benjamin VanderSloot, Eric Wustrow, Santiago Zanella-Béguelin, Paul Zimmermann
DROWN: Breaking TLS using SSLv2, Nimrod Aviram, Sebastian Schinzel, Juraj Somorovsky, Nadia Heninger, Maik Dankel, Jens Steube, Luke Valenta, David Adrian, J. Alex Halderman, Viktor Dukhovni, Emilia Käsper, Shaanan Cohney, Susanne Engels, Christof Paar, Yuval Shavitt
Lessons Learned in Implementing and Deploying Crypto Software, Peter Gutmann
When Private Keys are Public: Results from the 2008 Debian OpenSSL Vulnerability, Scott Yilek, Eric Rescorla, Hovav Shacham, Brandon Enright, Stefan Savage
Why Cryptosystems Fail, Ross Anderson
An Empirical Study of Cryptographic Misuse in Android Applications, Manuel Egele, David Brumley, Yanick Fratantonio, Christopher Kruegel
You Get Where You're Looking For: The Impact of Information Sources on Code Security, Yasemin Acar, Michael Backes, Sascha Fahl, Doowon Kim, Michelle L. Mazurek, Christian Stransky

9/21 Building Anonymity

Tor: The Second-Generation Onion Router, Roger Dingledine, Nick Mathewson, Paul Syverson

Untraceable Electronic Mail, Return Addresses, and Digital Pseudonyms, David L. Chaum
Anonymous connections and onion routing, Michael G. Reed, Paul F. Syverson, David M. Goldschlag
The Dining Cryptographers Problem: Unconditional Sender and Recipient Untraceability, David Chaum
Shining Light in Dark Places: Understanding the Tor Network, Damon McCoy, Kevin Bauer, Dirk Grunwald, Tadayoshi Kohno, Douglas Sicker
Tarzan: A Peer-to-Peer Anonymizing Network Layer, Michael J. Freedman, Robert Morris
P5: A Protocol for Scalable Anonymous Communication, Rob Sherwood, Bobby Bhattacharjee, Aravind Srinivasan
Dissent: Accountable Anonymous Group Messaging, Henry Corrigan-Gibbs, Bryan Ford
LASTor: A Low-Latency AS-Aware Tor Client, Masoud Akhoondi, Curtis Yu, and Harsha V. Madhyastha
Vuvuzela: Scalable Private Messaging Resistant to Traffic Analysis, Jelle van den Hoof, David Lazar, Matei Zaharia, Nickolai Zeldovich
SoK: Secure Messaging, Nik Unger, Sergej Dechand, Joseph Bonneau, Sascha Fahl, Henning Perl, Ian Goldberg, Matthew Smith

9/26 Breaking Anonymity

Circuit Fingerprinting Attacks: Passive Deanonymization of Tor Hidden Services, Albert Kwon, Mashael AlSabah, David Lazar, Marc Dacier, Srinivas Devadas

Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries, Aaron Johnson, Chris Wacek, Rob Jansen, Micah Sherr, Paul Syverson
How the NSA Attacks Tor/Firefox Users With QUANTUM and FOXACID, Bruce Schneier
Judge confirms what many suspected: Feds hired CMU to break Tor, Cyrus Farivar
How much anonymity does network latency leak?, Nicholas Hopper, Eugene Y. Vasserman, Eric Chan-Tin
Trawling for Tor Hidden Services: Detection, Measurement, Deanonymization, Alex Biryukov, Ivan Pustogarov, Ralf-Philipp Weinmann
Ting: Measuring and Exploiting Latencies Between All Tor Nodes, Frank Cangialosi, Dave Levin, Neil Spring

9/28 Measuring Internet Censorship

How Great is the Great Firewall? Measuring China’s DNS Censorship, Nguyen Phong Hoang, Arian Akhavan Niaki, Jakub Dalek, Jeffrey Knockel, Pellaeon Lin, Bill Marczak, Masashi Crete-Nishihata, Phillipa Gill, Michalis Polychronakis

Censored Planet: An Internet-wide, Longitudinal Censorship Observatory, Ram Sundara Raman, Prerana Shenoy, Katharina Kohls, Roya Ensafi
ICLab: A Global, Longitudinal Internet Censorship Measurement Platform, Arian Akhavan Niaki, Shinyoung Cho, Zachary Weinberg, Nguyen Phong Hoang, Abbas Razaghpanah, Nicolas Christin, Phillipa Gill
Examining How the Great Firewall Discovers Hidden Circumvention Servers, Roya Ensafi, David Fifield, Philipp Winter, Nick Feamster, Nicholas Weaver, Vern Paxson
Detecting Intentional Packet Drops on the Internet via TCP/IP Side Channels, Roya Ensafi, Jeffrey Knockel, Geoffrey Alexander, Jedidiah R. Crandall

10/3 Evading Internet Censorship

Geneva: Evolving Censorship Evasion Strategies, Kevin Bock, George Hughey, Xiao Qiang, Dave Levin

Alibi Routing, Dave Levin, Youndo Lee, Luke Valenta, Zhihao Li, Victoria Lai, Cristian Lumezanu, Neil Spring, Bobby Bhattacharjee
SoK: Towards Grounding Censorship Circumvention in Empiricism, Michael Carl Tschantz, Sadia Afroz, Anonymous, Vern Paxson
Come as You Are: Helping Unmodified Clients Bypass Censorship with Server-side Evasion, Kevin Bock, George Hughey, Louis-Henri Merino, Tania Arya, Daniel Liscinsky, Regina Pogosian, Dave Levin

10/5 Protocol Obfuscation

Telex: Anticensorship in the Network Infrastructure, Eric Wustrow, Scott Wolchok, Ian Goldberg, J. Alex Halderman

The Parrot is Dead: Observing Unobservable Network Communications, Amir Houmansadr, Chad Brubaker, Vitaly Shmatikov
Blocking-resistant communication through domain fronting, David Fifield, Chang Lan, Rod Hynes, Percy Wegmann, Vern Paxson
Cover Your ACKs: Pitfalls of Covert Channel Censorship Circumvention, John Geddes, Max Schuchard, Nicholas Hopper
SkypeMorph: Protocol Obfuscation for Tor Bridges, Hooman Mohajeri Moghaddam, Baiyu Li, Mohammad Derakhshani, Ian Goldberg
CovertCast: Using Live Streaming to Evade Internet Censorship, Richard McPherson, Amir Houmansadr, Vitaly Shmatikov

10/10 User Authentication

The Tangled Web of Password Reuse, Anupam Das, Joseph Bonneau, Matthew Caesar, Nikita Borisov, XiaoFeng Wang

unCaptcha: A Low-Resource Defeat of reCaptcha's Audio Challenge, Kevin Bock, Daven Patel, George Hughey, Dave Levin
Detecting Credential Spearphishing Attacks in Enterprise Settings, Grant Ho, Aashigh Sharma, Mobin Javed, Vern Paxson, David Wagner
The End is Nigh: Generic Solving of Text-based CAPTCHAs, Elie Bursztein, Jonathan Aigrain, Angelika Moscicki, John C. Mitchell
Neuroscience Meets Cryptography: Designing Crypto Primitives Secure Against Rubber Hose Attacks, Hristo Bojinov, Daniel Sanchez, Paul Reber, Dan Boneh, Patrick Lincoln
The science of guessing: analyzing an anonymized corpus of 70 million passwords, Joseph Bonneau

10/12 Usable Security

Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0, Alma Whitten, J.D. Tygar

Users Are Not the Enemy, Anne Adams, Martina Angela Sasses
A Comprehensive Quality Evaluation of Security and Privacy Advice on the Web, Elissa M. Redmiles, Noel Warford, Amritha Jayanti, Aravind Koneru, Sean Kross, Miraida Morales, Rock Stevens, Michelle L. Mazurek
Android Permissions: User Attention, Comprehension, and Behavior, Adrienne Porter Felt, Elizabeth Ha, Serge Egelman, Ariel Haney, Erika Chin, David Wagner
Users Really Do Plug in USB Drives They Find, Matthew Tischer, Zakir Durumeric, Sam Foster, Sunny Duan, Alec Mori, Elie Bursztein, Michael Bailey
Alice in Warningland: A Large-Scale Field Study of Browser Security Warning Effectiveness, Devdatta Akhawe, Adrienne Porter Felt
Why (Special Agent) Johnny (Still) Can't Encrypt: A Security Analysis of the APCO Project 25 Two-Way Radio System, Sandy Clark, Travis Goodspeed, Perry Metzger, Zachary Wasserman, Kevin Xu, Matt Blaze

10/17 Project Proposals

10/19 Classic Memory Attacks/Defenses

StackGuard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks, Crispan Cowan, Calton Pu, Dave Maier, Jonathan Walpole, Peat Bakke, Steve Beattie, Aaron Grier, Perry Wagle, Qian Zhang, Heather Hinton

SoK: Eternal War in Memory, Laszlo Szekeres, Mathias Payer, Tao Wei, Dawn Song
Smashing the Stack for Fun and Profit, Aleph One
Basic Integer Overflows, blexim
Exploiting Format String Vulnerabilities, scut

10/24 Modern Memory Attacks

The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86), Hovav Shacham

On the Effectiveness of Address-Space Randomization, Hovav Shacham, Matthew Page, Ben Pfaff, Eu-Jin Goh, Nagendra Modadugu, Dan Boneh
Beyond Stack Smashing: Recent Advances in Exploiting Buffer Overruns, Jonathan Pincus, Brandon Baker
Baggy Bounds Checking: An Efficient and Backwards-Compatible Defense against Out-of-Bounds Errors, Periklis Akritidis, Manuel Costa, Miguel Castro, Steven Hand
English Shellcode, Joshua Mason, Sam Small, Fabian Monrose, Greg MacManus
Low-Level Software Security by Example, Ulfar Erlingsson, Yves Younan, Frank Piessens

10/26 Automating Exploits

EXE: Automatically Generating Inputs of Death, Cristian Cadar, Vijay Ganesh, Peter M. Pawlowski, David L. Dill, Dawson R. Engler

A First Step Towards Automated Detection of Buffer Overrun Vulnerabilities, David Wagner, Jeffrey S. Foster, Eric A. Brewer, Alexander Aiken
AEG: Automatic Exploit Generation, Thanassis Avgerinos, Sang Kil Cha, Brent Lim Tze Hao, David Brumley

10/31 Fuzzing

Evaluating Fuzz Testing, George Klees, Andrew Ruef, Benji Cooper, Shiyi Wei, Michael Hicks

Symbolic Execution for Software Testing: Three Decades Later, Cristian Cadar, Koushik Sen
Hybrid Concolic Testing, Rupak Majumdar, Koushik Sen
Billions and Billions of Constraints: Whitebox Fuzz Testing in Production, Ella Bounimova, Patrice Godefroid, David Molnar

11/2 Modern Memory Defenses

Dynamic Taint Analysis for Automatic Detection, Analysis, and Signature Generation of Exploits on Commodity Software, James Newsome, Dawn Song

TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones, William Enck, Peter Gilbert, Byung-Gon Chun, Landon P. Cox, Jaeyeon Jung, Patrick McDaniel, Anmol N. Sheth
Control-Flow Integrity: Principles, Implementations, and Applications, Martin Abadi, Mihai Budiu, Ulfar Erlingsson, Jay Ligatti
SecVisor: A Tiny Hypervisor to Provide Lifetime Kernel Code Integrity for Commodity OSes, Arvind Seshadri, Mark Luk, Ning Qu, Adrian Perrig
Nozzle: A Defense Against Heap-spraying Code Injection Attacks, Paruj Ratanaworabhan, Benjamin Livshits, Benjamin Zorn
Control Flow Integrity for COTS Binaries, Mingwei Zhang, R. Sekar
How to Make ASLR Win the Clone Wars: Runtime Re-Randomization, Kangjie Lu, Stefan Nürnberger, Michael Backes, Wenke Lee

11/7 Botnets

Your Botnet is My Botnet: Analysis of a Botnet Takeover, Brett Stone-Gross, Marco Cova, Lorenzo Cavallaro, Bob Gilbert, Martin Szydlowski, Richard Kemmerer, Christopher Kruegel, Giovanni Vigna

Understanding the Mirai Botnet, Manos Antonakakis et al.
Hajime: Analysis of a decentralized internet worm for IoT devices, Sam Edwards, Ioannia Profetis
Spamming Botnets: Signatures and Characteristics, Yinglian Xie, Fang Yu, Kannan Achan, Rina Panigrahy, Geoff Hulten, Ivan Osipkov

11/9 Worms

How to 0wn the Internet in Your Spare Time, Stuart Staniford, Vern Paxson, Nicholas Weaver
Inside the Slammer Worm, David Moore, Vern Paxson, Stefan Savage, Colleen Shannon, Stuart Staniford, Nicholas Weaver

Characteristics of Internet Background Radiation, Ruoming Pang, Vinod Yegneswaran, Paul Barford, Vern Paxson, Larry Peterson
Exploiting Underlying Structure for Detailed Reconstruction of an Internet-scale Event, Abhishek Kumar, Vern Paxson, Nicholas Weaver
The Morris Worm: A Fifteen-Year Perspective, Hilarie Orman
W32.Stuxnet Dossier, Nicolas Falliere, Liam O Murchu, Eric Chien

11/14 TCP/IP Security

Off-Path TCP Exploits: Global Rate Limit Considered Dangerous, Yue Cao, Zhiyun Qian, Zhongjie Wang, Tuan Dao, Srikanth V. Krishnamurthy, Lisa M. Marvel

Security Problems in the TCP/IP Protocol Suite, S.M. Bellovin

11/16 DoS Attacks

Misbehaving TCP Receivers Can Cause Internet-Wide Congestion Collapse, Rob Sherwood, Ryan Braud, Bobby Bhattacharjee

Inferring Internet Denial-of-Service Activity, David Moore, Geoffrey M. Voelker, Stefan Savage
Detecting SYN Flooding Attacks, Haining Wang, Danlu Zhang, Kang G. Shin

11/21 DoS Defenses

Portcullis: Protecting Connection Setup from Denial-of-Capability Attacks, Bryan Parno, Dan Wendlandt, Elaine Shi, Adrian Perrig, Bruce Maggs, Yih-Chun Hu

A DoS-limiting Network Architecture, Xiaowei Yang, David Wetherall, Thomas Anderson
SIFF: A Stateless Internet Flow Filter to Mitigate DDoS Flooding Attacks, Abraham Yaar, Adrian Perrig, Dawn Song
Practical Support for IP Traceback, Stefan Savage, David Wetherall, Anna Karlin, Tom Anderson

11/23 Thanksgiving

11/28 VPNs

An Analysis of the Privacy and Security Risks of Android VPN Permission-enabled Apps, Muhammad Ikram, Narseo Vallina-Rodriguez, Suranga Seneviratne, Mohamed Ali Kaafar, Vern Paxson

OpenVPN Is Open to Fingerprinting, Diwen Xue, Reethika Ramesh, Arham Jain, Michalis Kallitsis, J. Alex Halderman, Jedidiah R. Crandall, Roya Ensafi
Security and Privacy of VPNs Running on Windows 10, Yael Grauer
How to Catch when Proxies Lie: Verifying the Physical Locations of Network Proxies with Active Geolocation, Zachary Weinberg, Shinyoung Cho, Nicolas Christin, Vyas Sekar, and Phillipa Gill
Finding Proxy Users at the Service Using Anomaly Detection, Allen T. Webb, A. L. Narasima Reddy

11/30 Underground Economies

Click Trajectories: End-to-End Analysis of the Spam Value Chain, Kirill Levchenko, Andreas Pitsillidis, Neha Chachra, Brandon Enright, Márk Félegyházi, Chris Grier, Tristan Halvorson, Chris Kanich, Christian Kreibich, He Liu, Damon McCoy, Nicholas Weaver, Vern Paxson, Geoffrey M. Voelker, Stefan Savage

Show Me the Money: Characterizing Spam-advertised Revenue, Chris Kanich, Nicholas Weaver, Damon McCoy, Tristan Halvorson, Christian Kreibich, Kirill Levchenko, Vern Paxson, Geoffrey M. Voelker, Stefan Savage

12/5 Project presentations (1/2)

12/7 Project presentations (2/2)

Web Accessibility