Erinevus lehekülje "ITI8610" redaktsioonide vahel
| 33. rida: | 33. rida: | ||
* [[Media:e.pdf|Module II Lecture 3]]: Multi-view contracts of cyber-physical systems | * [[Media:e.pdf|Module II Lecture 3]]: Multi-view contracts of cyber-physical systems | ||
* [[Media:Module III 4th lecture.pdf|Module II Lecture 4]]: JML contracts for OOP methods | * [[Media:Module III 4th lecture.pdf|Module II Lecture 4]]: JML contracts for OOP methods | ||
| − | * [[Media: | + | * [[Media:OpenJML - Solvers - 15_11_2018.pdf|Module II Lecture 5]]: A Tutorial on OpenJML |
==Practice Assignments== | ==Practice Assignments== | ||
Redaktsioon: 29. november 2018, kell 10:39
Course code: ITI8610
Lecturer: prof. Jüri Vain
Contact: juri.vain ätt ttu.ee, ICT-418
Co-lecturer: Leonidas Tsiopoulos
Co-lecturer: Aleksandr Lenin
Time and place
Lectures: Wednesdays 10:00, ICT-315
Labs: Wednesdays 12.00
- Lab supervisors:
- Aleksandr Lenin (aleksandr.lenin ätt ttu.ee) - Module I
- Jüri Vain (juri.vain ätt ttu.ee), Leonidas Tsiopoulos (letsio ätt ttu.ee) - Module II
News 2018
Deadline for submitting lab assignments of Module II -- TBA
Lecture plan
- Lecture 1: Introduction to software assurance
Module I: Assurance processes, risk management & security assurance====
Lecture 1: Security Risk Management
Lecture 2: Security Risk Management (contd.)
Lecture 3: Security Best Practices
Lecture 4: Input Validation
Lecture 5. Web Application Security. Cross-Site Scripting Attacks
Module II: : Assured Software Analytics
- Module II Lecture 1: Design by Contract
- Module II Lecture 2: Specification cases
- Module II Lecture 3: Multi-view contracts of cyber-physical systems
- Module II Lecture 4: JML contracts for OOP methods
- Module II Lecture 5: A Tutorial on OpenJML
Practice Assignments
Module I: Security Assurance
Assignment 1: Risk Analysis using the FAIR (Factor Analysis of Information Security Risk) framework
Assignment 2: Vulnerability Identification in Code using Static Analysis Tools
Assignment 3: Architectural Risk Analysis
Assignment 4: Web Application Exploitation
Module II
- Lab instruction: Lab assignment plan
NB! To report completed lab assignments go to web page https://ained.ttu.ee
and register as user with uniID of TUT
Grading
Each of the two modules is graded independently on the scale 0-100 points. A student must receive a positive grade in every module. Therefore, a student may obtain max 200 points for the entire course. 51%, or 101 points is the absolute minimum required to pass the course. The standard TalTech grading rules are applied to calculate the student's final grade.
Resources
https://ained.ttu.ee -- õppekeskkonas olevad materjalid
Gary McGraw "Software Security. Building Security In"