Application Security (5 op)
Toteutuksen tunnus: 3011640-3004
Toteutuksen perustiedot
- Ilmoittautumisaika
-
01.05.2023 - 14.09.2023
Ilmoittautuminen toteutukselle on päättynyt.
- Ajoitus
-
04.09.2023 - 15.12.2023
Toteutus on päättynyt.
- Opintopistemäärä
- 5 op
- Lähiosuus
- 5 op
- Toteutustapa
- Lähiopetus
- Yksikkö
- Tekniikka ja liiketoiminta
- Toimipiste
- Kupittaan kampus
- Opetuskielet
- suomi
- englanti
- Paikat
- 15 - 40
- Opettajat
- Jani Ekqvist
- Ryhmät
-
ICTMODictprojSemMOD ICT Projects & Cybersecurity (International Semester)
-
PTIETS21swisPTIETS21 Ohjelmistojen kehittäminen ja Tietojärjestelmät
- Opintojakso
- 3011640
Arviointiasteikko
H-5
Sisällön jaksotus
Period 3:
- Application security threats, vulnerabilities, and attacks
- The impacts of security breaches
- Application security principles
- Application security organizations and standards
Period 4:
- Designing and implementing a secure web application
- Building secure continuous development and operations environment
Tavoitteet
After completing the course the student is able to:
- Understand common application security threats, vulnerabilities, and attacks
- Evaluate the technical and business impacts of different kinds of attacks
- Describethe security principles for developing high security web applications
- participate in high security web applications developing projects
- use security testing tools
- analyse and report the results from security testing
- give justified improvement proposals to mitigate security vulnerabilities
Sisältö
- Network discovery, port and service identification
- Vulnerability scanning and penetration testing
- Web application security threats, vulnerabilities, and attacks
- The impacts of security breaches
- Web application security principles
- Implementing a secure web application
- Web application security organizations
Oppimateriaalit
Online material, provided through ItsLearning.
Opiskelijan ajankäyttö ja kuormitus
Lectures 12h
Self-Study with online materials 40h
Laboratory Work 40h
Project Work 40h
Project presentations and reflection 3h
Arviointimenetelmät ja arvioinnin perusteet
The evaluation is based on:
- Homework assignments, 40% of grade
- Laboratory assignments, 40% of grade
- Project work, 20% of grade
Hylätty (0)
Student has incomplete understanding of application security and is unable to design and implement a secure software development process.
Arviointikriteerit, tyydyttävä (1-2)
Student is able to design, implement or operate a secure continuous development process with supervision.
Student has knowledge of application security threats, vulnerabilities and attacks, and understands the impacts of a security breach. Student is somewhat familiar with application security organizations and standards.
Arviointikriteerit, hyvä (3-4)
Student is able to design and implement a secure continuous development process with supervision and operate it competently.
Student understands application security threats, vulnerabilities and attacks, and can mitigate the impacts of a security breach. Student is familiar with application security organizations and standards, and is able to utilize them in their work.
Arviointikriteerit, kiitettävä (5)
Student is able to design and implement a secure continuous development process without supervision and operate it competently.
Student has an excellent understanding of application security threats, vulnerabilities and attacks, and can mitigate the impacts of a security breach. Student is familiar with application security organizations and standards, and is able to utilize them to create effective security processes.
Lisätiedot
All communication is through ItsLearning.