Dr. Drew Hwang, CIS, Cal Poly Pomona
Home
101
WDD
ECOMM
SWA
SP
Secure Web Development
Home
Basics
Offense
Defense
SDLC
Code
Access
Parameter
Perimeter
Browser
Industry
Resource
Home
Description
Topics
Tools
Final
Exercises
Browser Proxy
SQL Injection
Messageboard XSS
Session Hijacking
Individual Projects
Input Validation
Defending SQL Injection
CAPTCHA Integration
Cryptography/Hashing
Access Control
Defending CSRF
Team Projects
Security Requirements
Issues in SWA
Print
Course Description
Today's web platform offers more risks to expose corporate programs and data from unauthorized access, use, disclosure, destruction, modification, and disruption. Research has found that insecure web applications are being developed by web programmers who lack adequate security training. Modern web developers need to understand how web applications are vulnerable, how attacks are performed, and how defense measures are to be deployed to mitigate these attacks.
Learning Goals
In this course, you will learn:
Identification of Web application vulnerabilities and threats
Analysis and demos of OWASPs top 10 web application security risks
Development of appropriate security mechanisms in the logic, coding, testing, and debugging of Web applications.
From class demonstration and individual projects, student will acquire the essential knowledge and skills in secured Web development through the "learning by doing" approach. The techniques of ethical hacking outlined in this course are intended to teach students how hackings are performed and how they can be mitigated. Any unauthorized attempts to perform these techniques against a system is a violation of local, state, federal, and/on international laws.
Prerequisite
Basic Web development experience, both client-side and server-side.
News in the Making
(source:
cgisecurity.com
)