Untitled Document

Updates

All course announcements, changes, and postings will appear on this page. Also, the instructor may post interesting links to security articles, white papers, or other security websites that students taking this course may find useful.

Links to Buffer Overflow Online Demos, XSS Attacks, and SQL Injection:
http://nsfsecurity.pr.erau.edu/bom/
http://www.osix.net/modules/article/?id=603
http://www.spidynamics.com/whitepapers/WhitepaperSQLInjection.pd

IP Traceback Links for Final Project:

http://en.wikipedia.org/wiki/IP_Traceback
http://www.cs.ucsd.edu/~snoeren/papers/spie-ton.html
www.sm.luth.se/csee/csn/publications/ip_traceback.pdf
https://users.cs.jmu.edu/aboutams/Public/IP%20TraceBack/
www.caida.org/projects/oarc/200507/slides/oarc0507-Dagon.pdf
seclab.cs.ucdavis.edu/papers/2001-03-watermark-ifipsec.pdf
www.cs.jhu.edu/~fabian/courses/CS600.424/course_papers/samples/SteppingStones.pdf

Recommended Books:

Buffer Overflow Attacks James C. Foster, Vitaly Osipov, Nish Bhalla, and Niels Heinen (ISBN 1932266674).

Information Security Fundamentals Thomas R. Peltier, Justin Peltier, and John Blackley (ISBN 0849319579).

Secure Computers and Networks Eric Fisch and Gregory White (ISBN 0849318688).

Secure Computing Rita Summers (ISBN 0070694192).

Security in Computing Charles Pfleeger (ISBN 0133374866).

Unix System Security Tools Seth Ross (ISBN 0079137881).

Security Links:

     www.cert.org

     www.securityfocus.com

     www.securitydocs.com>

     http://csrc.nist.gov/

     www.computersecuritynow.com

     www.sans.org