ITI8610

Allikas: Kursused

Course code: ITI8610

Lecturer: prof. Jüri Vain
Contact: juri.vain ätt ttu.ee, ICT-418
Co-lecturer: Leonidas Tsiopoulos
Co-lecturer: Aleksandr Lenin


Sisukord

Time and place

Lectures: Wednesdays 10:00, ICT-315
Labs: Wednesdays 12.00

  • Lab supervisors:
    • Aleksandr Lenin (aleksandr.lenin ätt ttu.ee) - Module I
    • Jüri Vain (juri.vain ätt ttu.ee), Leonidas Tsiopoulos (letsio ätt ttu.ee) - Module II

News 2018


Deadline for submitting lab assignments of Module II -- TBA

Lecture plan

  • Lecture 1: Introduction to software assurance

Module I: Assurance processes, risk management & security assurance====

Lecture 1: Security Risk Management
Lecture 2: Security Risk Management (contd.)
Lecture 3: Security Best Practices
Lecture 4: Input Validation
Lecture 5. Web Application Security. Cross-Site Scripting Attacks

Module II: : Assured Software Analytics

Practice Assignments

Module I: Security Assurance

Assignment 1: Risk Analysis using the FAIR (Factor Analysis of Information Security Risk) framework
Assignment 2: Vulnerability Identification in Code using Static Analysis Tools
Assignment 3: Architectural Risk Analysis
Assignment 4: Web Application Exploitation

Module II

NB! To report completed lab assignments go to web page https://ained.ttu.ee

and register as user with uniID of TUT

Grading

Each of the two modules is graded independently on the scale 0-100 points. A student must receive a positive grade in every module. Therefore, a student may obtain max 200 points for the entire course. 51%, or 101 points is the absolute minimum required to pass the course. The standard TalTech grading rules are applied to calculate the student's final grade.

Resources

https://ained.ttu.ee -- õppekeskkonas olevad materjalid
Gary McGraw "Software Security. Building Security In"