Hands-On Teaching of Software and Web Applications Security

Alexander Uskov
Bradley University


Abstract

Practical design and development of highly secure software and Web systems and applications are in high demand in industry. As a result, there is a need for a design and development of curriculum and courseware for computer science and engineering majors aimed at introduction of security concepts, models, methods, technologies and tools in order to design, develop, deploy, and maintain highly secure software and Web applications. The main topics of proposed, designed and developed innovative undergraduate and graduate curriculum and courseware include but are not limited to threats posed to software and Web applications, software security concepts and protection mechanisms, trust and threat model, authentication and authorization, software risks assessment and management models, security management models for software and Web applications, secure programming styles and software development. The developed curriculum and courseware have a strong emphasis on innovative paradigms of learning - learning-by-doing and gamification learning paradigms.