BC4005 Secure Systems Engineering Syllabus:
BC4005 Secure Systems Engineering Syllabus – Anna University PG Syllabus Regulation 2021
COURSE OBJECTIVES:
Study of designing secure systems.
Understand the micro architectural level of security.
Understand hardware, operating system, and application layer vulnerabilities.
Study countermeasures for system level attacks.
UNIT I HARDWARE SECURITY
Hardware Security – Hardware Trojans and Detection, PUFs – Power Analysis Attacks and Countermeasures – Fault Attacks – Implementation Aspects of Crypto Algorithms (A case study of AES and ECC)
UNIT II MICRO ARCHITECTURAL SECURITY
Micro Architectural Security – Timing attacks and Covert Channels – RAM based attacks – Cold boot – Row hammer
UNIT III OPERATING SYSTEM SECURITY
Operating System Security – Stack Smashing Attacks – Dynamic Memory Allocation Attacks – Format String Vulnerabilities – return-to-libc attacks – ROP attacks – Side Channel Attacks in Operating Systems – Countermeasures – Non-executable stacks – Capability based Systems – Canaries – Malware Analysis Techniques
UNIT IV APPLICATION SECURITY
Application Security SQL Insertion – Shell Shock – Heart bleed bug, Covert Channels, Flush+Reload Attacks, Prime+Probe, Meltdown, Spectre
UNIT V SYSTEMS SECURITY
Systems Security- Formal Verification of Security Protocols, Power Analysis Attacks, Power Analysis Attacks, Hardware Trojans, FANCI: Identification of Stealthy Malicious Logic, Detecting Hardware Trojans in ICs, Protecting against Hardware Trojans, Side Channel Analysis, Fault Attacks on AES
COURSE OUTCOMES:
CO1: Identify and analyse vulnerabilities at hardware level
CO2: Identify micro architectural level security
CO3: Analyse and apply countermeasures to operating system level attacks
CO4: Apply malware analysis techniques at system level
CO5: Understand and analyse application level security
TOTAL: 45 PERIODS
REFERENCES
1. Chester Rebeiro, Debdeep Mukhopadhyay and Sarani Bhattacharya, “Timing Channels in Cryptography, A Micro- Architectural Perspective “, Springer, 2015
2. Secure Systems Engineering, https://nptel.ac.in/courses/106/106/106106199 (Unit 4,5)
3. Swarup Bhunia, Mark Tehranipoor, “Hardware Security: A Hands-on Learning Approach”, Morgan Kauffmann, 2018.
4. S. Garfinkel and L. F. Cranor, “Security and Usability: Designing Secure Systems That People Can Use”, O’Reilly, 2008
5. Matt Bishop , “Computer Security: Art and Science”, 2nd Edition, Addison-Wesley, 2018.