On July 30th, 2024, due to an important database update, there will be service interruptions in the Student Self-Service and Workforce Management areas between 8 AM and 11 AM. Thank you for your understanding.

188.959 Software Security
This course is in all assigned curricula part of the STEOP.
This course is in at least 1 assigned curriculum part of the STEOP.

2020S, VU, 2.0h, 3.0EC
TUWEL

Properties

  • Semester hours: 2.0
  • Credits: 3.0
  • Type: VU Lecture and Exercise

Learning outcomes

After successful completion of the course, students are able to conduct planning, testing and development of secure software applications. In  particular, the necessary theoretical foundations of secure programming will be applied and enhanced by practical examples.

Subject of course

The theoretical part of this course consists of software security testing techniques, binary analysis and hardening, language security, fingerprinting, common attack vectors and security in the development process. The course assignments aim to develop specific skills for designing and testing of secure software like web applications and protocols and exploit development.

Teaching methods

Each lecture focuses on theoretical aspects of software security as these are detailed in the syllabus. The assignments consist of homeworks dealing with the detection of security vulnerabilities in communication protocols, binary analysis and developing models for combinatorial security testing when these are meant to emulate attack vector behavior.

Mode of examination

Immanent

Additional information

Course Textbook: G. McGraw, Software Security: Building Security in, Addison-Wesley, Software Security Series, Addison-Wesley Professional, 2006

Optional Literature: D. E. Simos, R. Kuhn, A. G. Voyiatzis and R. Kacker, Combinatorial Methods in Security Testing. IEEE Computer 49, pp. 80-83, 2016

Lecturers

Institute

Course dates

DayTimeDateLocationDescription
Wed14:00 - 16:0011.03.2020FH Hörsaal 1 - MWB Introduction (together with 188.366, 188.972, 188.985)

Examination modalities

Practical assignments and two written exams (mid term and final).

Course registration

Begin End Deregistration end
29.01.2020 00:00 27.03.2020 22:59 27.03.2020 22:59

Curricula

Study CodeObligationSemesterPrecon.Info
066 645 Data Science Not specified
066 926 Business Informatics Mandatory elective
066 937 Software Engineering & Internet Computing Mandatory elective
710 FW Elective Courses - Electrical Engineering Not specified

Literature

No lecture notes are available.

Previous knowledge

Programming experience in C/C++ and/or Python would be desired.

Language

if required in English