Software Security 2022/2023

Lucas Cordeiro and Youcheng Sun will teach this course for post-graduate students in Computer Science and Engineering. This page contains information about the course.

Overview

Software is subject to numerous forms of attack, such as memory corruption, buffer overflows, and injection; these flaws are often too complex or expressive to be manually detected by the software developer. Techniques and tools exist to prevent and detect software flaws, which are typically too hard to manually find, e.g., modeling, code reviews, fuzzing, static and dynamic code analyses, program verification, and code tainting.

This course unit introduces students to basic and advanced approaches to formally build verified trustworthy software systems, where trustworthiness comprises five attributes: reliability, availability, safety, resilience, and security.

Relationship to other courses

Software Security involves people and practices to build software systems to ensure confidentiality, integrity, and availability. Therefore, this course connects to other disciplines: cyber-security, cryptography, automated reasoning and verification, logic and modeling, agile and test-driven development, software engineering concepts, and systems governance.

Prerequisites

Fundamental programming skills, including familiarity with C and Python 3. In more detail:

For C, the student should know how pointers and dynamic memories work.
The student should know how to develop basic algorithms/data structures and interact with the host system for Python.

Basic Notions in Linux System Administration:

Create a web server.
Understand the difference between user space and kernel space.

Some interest/knowledge of logic and modeling:

Understand propositional and first-order logic.
Understand linear-time temporal logic.

Syllabus

Part I: Software Security Fundamentals

Defining a Discipline
A Risk Management Framework
Vulnerability Assessment and Management
Overview on Traffic, Vulnerability and Malware Analysis

Part II: Software Security
- Code Inspection for Finding Security Vulnerabilities and Exposures (ref: Mitre’s CVE)
- Architectural Risk Analysis
- Penetration Testing, Concolic Testing, Fuzzing, Automated Test Generation
- Model Checking, Abstract Interpretation, Symbolic Execution
- Risk-Based Security Testing and Verification
- Software Security Meets Security Operations
Part III: Software Security Grows Up

Withstanding adversarial tactics and techniques defined in Mitre’s ATT&CK™ knowledge base
An Enterprise Software Security Program

Intended Learning Outcomes (ILOs)

On successful completion of this course unit, a student will be able to

Explain computer security problem and identify why broken software lies at its heart.
Explain continuous risk management and how to put it into practice to ensure software security.
Summarise and contrast security properties and link them into the software development lifecycle.
Develop and apply software validation and verification techniques to test security vulnerabilities.
Relate security testing and verification to risk analysis to address continued resilience when a cyber-attack takes place.
Develop case studies to think like an attacker in order to expose security vulnerabilities in software systems.
Debate and solve security vulnerabilities using software verification and testing techniques.

MSc theme on software security and automated reasoning

You can find the slides we presented in the welcome week about our MSc theme on software security and automated reasoning.

Lectures & extra material

Lectures are available here through slides, videos, and reading materials. The last exam is available here

Date

Video

Extra Content

Week 1

All videos: Introduction to Software Security

Video 1: Welcome to COMP63342

Video 2: Standard notions of security

Video 3: Software Security Problems

Video 4: Software Testing and Verification - Part I

Video 5: Software Testing and Verification - Part II

Video 6: Kripke Structure

Video 7: Convert from source code to SSA

Video 8: Synchronous Session

Week 2

All videos: Secure C Programming: Memory Management

Video 1: Risk Assessment

Video 2: Dynamic Data Structures

Video 3: Secure C Coding

Video 4: Data Structure Alignment

Video 5: A Static Analysis Tool for Finding Security Vulnerabilities

Video 6: Introduction to Malware Analysis

Video 7: Synchronous Session

Week 3

All videos: Detection of Software Vulnerabilities: Static Analysis (Part I)

Video 1:Introduce software verification and validation

Video 2: Understand soundness and completeness concerning detection techniques

Video 3: Emphasize the difference between static analysis, testing / simulation, and debugging

Video 4: SAT and SMT solving

Video 5: Bounded Model Checking of Software

Video 6: Memory Model

Video 7: Aligned Memory Model

Video 8: Bonus Material About SMT Floating-Point Theory

Video 9: Synchronous Session

Week 4

All videos: Detection of Software Vulnerabilities: Static Analysis (Part II)

Video 1: BMC Architectures

Video 2: Communication models for concurrent programs

Video 3: Lazy exploration of multi-threaded programs

Video 4: Schedule recoding approach

Video 5: Sequentialisation methods

Video 6: Bonus Material About SMT-Based Refutation of Spurious Bug Reports in the Clang Static Analyzer

Video 7: Synchronous Session

Week 5

All videos: Detection of Software Vulnerabilities: Dynamic Analysis

Video 1: Introduction to security testing

Video 2: Code coverage

Video 3: Monitor Program's Executions

Video 4: Generate executions of the program

Video 5: Black-box fuzzing

Video 6: White-box fuzzing

Video 7: Bonus Material About FuSeBMC: A White-Box Fuzzer for Finding Security Vulnerabilities in C Programs

Video 8: Bonus Material about Physical Attacks

Video 9: Bonus Material about Dynamic Binary Analysis

Bonus slides about Testing of Deep Neural Networks

Topics for the seminar

We provide some suggestions for software security topics for the seminars here.

Teaching Activities

Lectures
Workshops
Tutorials
Labs/Practicals

Assessment

The full course will be assessed as follows:

70% Coursework

Lab exercises = 40%.
Blackboard Quizes = 10% (the quizes test content covered in lectures and labs).
Seminars = 20%.

30% Exam

Format: 2 hours, 3 questions, all the material.

Resources

References

The books used by this course are:

Rashid et al.: The Cyber Security Body of Knowledge, CyBOK, v1.0, 2019.
McGraw, Gary: Software Security: Building Security In, Addison-Wesley, 2006.
Hoglund, Greg: Exploiting Software: How to Break Code, Addison-Wesley, 2004.
Ransome, James and Misra, Anmol: Core Software Security: Security at the Source, CRC Press, 2014.
Edmund M. Clark Jr., Orna Grumberg, Daniel Kroening, Doron Peled, Helmut Veith: Model Checking, The MIT Press, 2018.
Mark Dowd , John McDonald, et al.: The Art of Software Security Assessment: Identifying and Preventing Software Vulnerabilities, Addison-Wesley, 2006.
SEI CERT C Coding Standard: Rules for Developing Safe, Reliable, and Secure Systems, SEI - Carnegie Mellon University, 2016.

Software

The software used by this course are:

Useful Links