ICT-2203:Introduction to Software Security

DescriptionThe course introduces basic and fundamental concepts in secure software design, development, and engineering issues. The course starts by describing the software development life cycle; software process, software development, requirement engineering, system modeling, architectural design and implementation for building secure systems. The course then introduce common software vulnerabilities such injection, cross site scripting, insecure direct object reference, command injection, integer and buffer overflow and caching exception in the context of web technologies development. Lecture: 2 hrs/week; Lab: 2 hrs/week.