Welcome,
Guest
.
Login
.
Türkçe
NİNOVA
COURSES
HELP
ABOUT
Where Am I:
Ninova
/
Courses
/
Faculty of Computer and Informatics
/
BLG 460E
/
Course Informations
Return to Faculty
Home Page
Course Information
Course Weekly Lecture Plan
Course Evaluation Criteria
Course Information
Course Name
Turkish
Güvenli Programlama
English
Secure Programming
Course Code
BLG 460E
Credit
Lecture
(hour/week)
Recitation
(hour/week)
Laboratory
(hour/week)
Semester
8
2
2
-
-
Course Language
English
Course Coordinator
Mehmet Tahir Sandıkkaya
Course Objectives
1. Teaching possible security flaws that may be encountered during software implementation.
2. Students can produce software that does not be affected by known development-time vulnerabilities.
3. Students will gain defensive development style to be less affected by future development-time vulnerabilities.
4. Students will gain the technical abilities to produce secure software.
Course Description
Determining and mitigating programming mistakes that may affect software security, Stack overflow attacks, Injection attacks, Reverse engineering and code obfuscation, Attacks that target web sites, Handling permissions and authorization in programming languages, Basic cryptologic functions and their usage in computer communications, Basic operating system duties and its effect on software security
Course Outcomes
Students who pass the course will be able to:
1. Write programs who can resist memory overflows.
2. Protect the programs they write against the improbable effects of malicious user input.
3. Know the protection by sanitizing non-standard components.
4. Obfuscate their code.
5. Write programs against well-known Internet vulnerabilities.
6. Know how to use permissions and authorization.
7. Obtain defensive programming style to mitigate future vulnerabilities.
Pre-requisite(s)
BLG 252E - Object Oriented Programming
Required Facilities
Computer access, a spectrum of operating systems and a spectrum of compiler tools in these operating systems.
Other
Students are expected to have knowledge on C, C++, C# and Java as well as ability to understand concepts related to machine code and architecture.
Textbook
David A. Wheeler, "Secure Programming HOWTO", 2015.
Other References
1. Fred Long, Dhruv Mohindra, Robert C. Seacord, Dean F. Sutherland, David Svoboda, "Java Coding Guidelines 75 Recommendations for Reliable and Secure Programs", Addison-Wesley, 2014. (ISBN: 978-0321933157)
2. Robert C. Seacord, “Secure Coding in C and C++”, 2nd ed., Addison-Wesley, 2013. (ISBN: 978-0321822130)
3. Jon Erickson, “Hacking: The Art of Exploitation”, 2nd ed., No Starch Press, 2008. (ISBN: 978-1593271442)
4. Michael Howard, David LeBlanc, “Writing Secure Code: Practical Strategies and Proven Techniques for Building Secure Applications in a Networked World”, Microsoft Press, 2004. (ISBN: 978-0735617223)
Courses
.
Help
.
About
Ninova is an ITU Office of Information Technologies Product. © 2024