Syllabus

Table of contents

  1. Course components
  2. Learning objectives
  3. Grading policy
    1. Points allocation
    2. Grading scale
    3. Late policy
  4. Other course policies

Course components

The course consists of hands-on lab assignments, lectures and guest lectures on each topic, and discussions of recent papers from the hardware security literature. Your expected work includes:

  • Hack. There will be four lab assignments. You will be asked to implement your own code and test it on a real machine. Details on these assignments will be provided in class. Students enrolled in the 12-unit version of the course may substitute the last lab assignment for an open-ended research project (with the instuctor’s approval).
  • Read. Most classes will have assigned readings. You should do these readings before coming to class and be prepared to discuss their content. Occasionally we will also recommend optional readings; you are encouraged to read those, but not required.
  • Participate. You should attend all classes in person and participate in discussions. You are encouraged to ask questions about the readings during class. Based on the quality of the questions, we will give bonus points toward your final grade. Please inform the instructor if you cannot make it to the class due to travel or sickness.
  • Review (17-715 only). For each discussion class, each student enrolled in the 12-unit version of the course is required to write a “peer-review”-style review for one of the assigned readings. The review should be submitted by 11:59pm the day before each class. Guidance on how to write these reviews will be provided in class at the beginning of the semester.
  • Present (17-715 only). Each student enrolled in the 12-unit version of the course will lead one discussion. The discussion will cover 2-5 papers about the same (or closely related) topic. The papers will be selected from recent computer security and computer architecture conferences.

Learning objectives

  • Ability to assess software for resilience against microarchitectural vulnerabilities
  • Ability to demonstrate proof-of-concept exploits of microarchitectural vulnerabilities
  • Ability to implement countermeasures against microarchitectural vulnerabilities
  • Ability to engage and critique academic literature in the field of microarchitectural security, articulate the arguments made by the authors of assigned readings, assess the evidence used to support them, and evaluate them alone and in comparison with one another
  • Ability to discuss the implications of assigned readings for the field
  • Ability to effectively communicate microarchitectural security research in presentations

Grading policy

Points allocation

The total points possible are allocated as follows.

17-435 (9-unit version):

  • 70% Lab assignments
  • 30% Final exam

17-715 (12-unit version):

  • 50% Lab assignments
  • 20% Final exam
  • 20% Presentation
  • 10% “Peer-review”-style reviews

17-715 (12-unit version) - project option:

  • 30% Lab assignments
  • 20% Final exam
  • 20% Presentation
  • 10% “Peer-review”-style reviews
  • 20% Final Project (substitutes the 4th lab assignment)

Grading scale

We will translate your final class percentage into a letter grade as follows (subject to change):

  • A (Excellent): 85+
  • B (Good): 75-85
  • C (Satisfactory): 67-74
  • D (Passing): 60-66
  • R (Failure): 0-59

Late policy

Each of you has a total budget of 3 free late days that you can use for lab assignment-related or project-related deliverables during the semester without impacting you final grade. Once the budget has been used up, late submissions are subject to a 10% penalty per late day, with a maximum penalty of 50%. If a single lab assignment is submitted more than 5 days late (even if part of them are free late days), no credit will be awarded for that assignment.

Other course policies

  • Ethics, Law, & University Policies: This course includes topics related to computer security and privacy. We may cover technologies whose abuse could infringe on the rights of others. Acting lawfully and ethically is your responsibility. Carefully read the Computer Fraud and Abuse Act (CFAA), a federal statute that broadly criminalizes computer intrusion. Please also review CMU’s computing policy for guidelines concerning proper use of information technology at CMU.
  • Academic Integrity: This course follows CMU’s academic integrity policy. You are expected to review and abide by this policy. If you have any questions, you can contact the instructor.
  • Accommodations for students with disabilities: If you have a disability and require accommodations, please contact the Office of Disability Resources. If you have an accommodations letter from the Office of Disability Resources, we encourage you to discuss your accommodations and needs with the course instructors as early in the semester as possible. We will work with you to ensure that accommodations are provided as appropriate.
  • Statement on student wellness: As a student, you may experience a range of challenges that can interfere with learning, such as strained relationships, increased anxiety, substance use, feeling down, difficulty concentrating and/or lack of motivation. These mental health concerns or stressful events may diminish your academic performance and/or reduce your ability to participate in daily activities. CMU services are available, and treatment does work. You can learn more about confidential mental health services available on campus at: http://www.cmu.edu/counseling/. Support is always available (24/7) from Counseling and Psychological Services: 412-268-2922.
  • Recording Policy: You may not record any classroom activities without express written consent from the instructor. If you have (or think you may have) a disability such that you need to record or tape classroom activities, you should contact the Office of Disability Resources to request an appropriate accommodation.
  • Mobile Devices: Please refrain from using your computer/tablet/phone/etc. in class. Research on learning shows that the use of laptops in class can be distracting, affecting everyone’s learning experience. Moreover, it can be seen as disrespectful to both your peers and the guest speakers who spend time and effort in preparing their presentations. Exceptions will only be granted in accordance with university guidelines for accessibility concerns.