18-739 Foundations of Security and Privacy
Computer security and privacy is concerned with the design, implementation and analysis of mechanisms intended to guarantee that desired policies (or properties) hold in the presence of adversaries. This course will cover a selection of topics in this area with a focus on protocols and privacy. Protocols: Topics include protocols for authentication and key exchange, anonymous communication, electronic voting, and password generation. Privacy: We will study privacy in a few settings where rigorous definitions and enforcement mechanisms are being developed – statistical disclosure limitation (as may be used by the census bureau in releasing statistics), semantics and logical specification of privacy policies that constrain information flow and use (e.g., by privacy regulations such as the HIPAA Privacy Rule), principled audit mechanisms for enforcing privacy policies – and other settings in which privacy concerns have prompted much research, such as social networks and online tracking & targeted advertising.
Credit units: 12
Prerequisites: This course should be of interest to graduate students and advanced undergraduates interested in security, privacy, cryptography, programming languages and formal methods. An introductory course on computer security such as 18-487 or 18-730 is recommended but not required to take this course.