Lecture 22: May 20, 2026

Reading: text, §23.6.2–7, 23.9, 24.1–24.2
Assignments: Homework 4, due May 27, 2026

  1. Greetings and felicitations!

  2. Miscellaneous malware
    1. Logic bombs
    2. Adware, spyware, ransomware
    3. Phishing, spearphishing

  3. Defenses
    1. Scanning
    2. Distinguishing between data and instructions
    3. Containment
    4. Specifications as restrictions
    5. Limiting sharing
    6. Statistical analysis
    7. Trust

  4. Vulnerabilities analysis

  5. Penetration Studies
    1. Goals
    2. Where to start
      1. Unknown system
      2. Known system, no authorized access
      3. Known system, authorized access
UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: mabishop@ucdavis.edu
ECS 153A, Computer & Information Security & Privacy I
Version of May 20, 2026 at 3:03PM

 You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh