Current Catalog Description

Survey of common software vulnerabilities: buffer overflows, format string attacks, cross-site scripting, and botnets. Discussion of common defense mechanisms:  static code analysis, reference monitors, language-based security, secure information flow, and others. The graduate version differs from the undergraduate version by requiring advanced assignments and projects. Credit will not be given for both CSE 334 and CSE 434. Prerequisite: CSE 109 and CSE 262.



No textbook is required.

Course Outcomes

The goal of this course is twofold: First, on completing the course, students will understand the common software-security vulnerabilities and basic counter-measures. Second, students interested in software-security research will be sufficiently prepared to carry out research on the topics covered.



  • CSE 109: Systems Programming
  • CSE 262: Programming Languages