Vorlesungszusammenfassung der Vorlesung Rechnerstrukturen am KIT von Prof. Dr. Karl gehalten von Dr. Lars Bauer und Übungen gehalten von Thomas Becker. Die Klausur hat typischerweise einen hohen Anteil an Wissensfragen und die Bearbeitungszeit ist sehr knapp.
GrundlagenEinführungZunächst mechanische RechnerPlatz und Komplexität durch Dualsystem deutlich reduziertMoore’s Gesetz Anzahl der Transistoren, die auf einem IC integriert werden können, verdoppelt sich alle 18 Monate. Später angepasst auf alle zwei Jahre.
Software Engineering 2 (SWT II) is the follow up lecture to Software Engineering 1 and is held by Prof. Dr. Reussner. It focusses on software architecture, quality and development processes. The first part of this post is a lecture summary organized as self test questions for active recall. Bellow there are answers to the learning goals presented in the last lecture.
Design & RealizationClean CodingLehman’s first lawA system that is used will be changed
Imaginary CTF is not your classical weekend CTF. Instead, they have been publishing fun challenges almost every day since April 2021 – pretty impressive. I’ve been solving some of their challenges here and there. This one, from last month, was especially fun. Also I wanted to try a jupyter notebook style write-up. Let me know if this helps comprehension or maybe too much mixing of code and text.
The challenge states:
PrivacyDefinitionsPrivacy dictionary definitionthe quality or state of being apart from company or observation : seclusion freedom from unauthorized intrusion <one's right to privacy>⇒ right to be let alone
CS definition of privacythe claim of individuals … to determine for themselves when, how, and what extent of information about them is communicated to others. ~ Alan Westin (1967)Privacy Sphere modelModelling protection requirements (expectations) of classes of information as concentric circles of decreasing need for protection.
This post is about turning a photo of a cat into a photo of a goldfish by changing only one pixel, at least according to resnet50. With Organizers we participated in RCTF during the close race at the end 2022 to be #1 on CTFtime. This literally meant to participate in every high rated CTF and solving every challenge, including the miscy of the misc. The challenge catspy appeared at around 2am in the misc category and the description states:
Abstract Ethereum smart contracts are Turing complete programs that operate on money and derived assets. With a market capitalization in the three digit billions, there is an interest in quantifying their usage. Despite blockchain data being public by design, large scale analysis of smart contracts is technically challenging to do on a large scale. We summarize methods to analyze contract usage on the Ethereum blockchain and categorize the most popular contracts by their application domain and behavior.
The lecture Machine Learning for the Natural Sciences promises to focus on applications of machine learning to natural sciences, especially physics and chemistry. However, most of the actual content is repeating machine learning basics, that is already in foundational lectures on machine learning. In the remaining time, a few interesting are presented, but sadly just very shallowly.
There is also programming homework that counts for 1/3 of the final grade. This is nice, and I think more courses should do that.
There is no such thing as the perfect university exam, but if we agree that its purpose is to give an objective score about an individual’s comprehension of the covered topics, then there is clearly a way to be less wrong when creating exams. This post lists a few DONT’S that can be easily avoided. If you think there is an anti-pattern in this post, you can write me an email and I will add it here.
Lecture summary of the lecture operation systems security, organized with self test toggles. The lecture is concerned with binary exploitation from an offensive as well as a defensive point of view. I can really recommend the lecture, if you are interested in modern security mechanisms implemented by operating systems and hardware.
Basic DefinitionsWhat is a vulnerability?What is the definition of an exploit? Set-uid-bitAllows an executable, that is owned by the user, to use root privileges during execution