Welcome
CSC 415 - 001 Software Security introduces students to the discipline of designing, developing, and testing secure and dependable software-based systems.
Learning Objectives
Upon successful completion of this course, a student will be able to...
Describe common vulnerabilities and software weaknesses that affect security and privacy in software.
Assess the security risk of a system under development using a risk management framework.
Describe secure coding practices and techniques that can be incorporated into the security development lifecycle.
Document security requirements through functional requirements specifications and misuse/abuse cases.
Apply design principles (such as defense in depth, least privilege, and separation of privilege) when developing secure software.
Construct attack and defense trees to help analyze and address risks that exist in software.
Perform threat modeling when designing software to identify threats, document mitigation strategies, and validate that threats have been addressed.
Perform security testing, including fuzz testing and penetration testing.
Course meeting times
Lecture:
Days: Mondays and Wednesdays
Time: 11:45 - 1:00
Place: EB3 Room 2201
Links
Moodle for CSC415-001 (nothing of interest in there yet)
Contact
Laurie Williams, Distinguished University Professor
Engineering Building 2, Room 2240
Zoom Office Hours: Section 001: Monday 4:00-4:30 (or in person)
Additional in-person office hours upon request.
Zhouyu Li, Teaching Assistant
Email: zli85@ncsu.edu
Office: Zoom
Office Hours: Monday 3:00 - 4:00p
Md Rayhanur Rahman, Teaching Assistant
Email: mrahman@ncsu.edu
Office: Zoom
Office Hours: Tuesday 4:00-5:00p