Skip to content

Latest commit

 

History

History
 
 

University of Maryland - Software Security

University of Maryland, College Park - Software Security

University of Maryland, College Park

University of Maryland, College Park INSTRUCTORS

Instructors: Michael Hicks

Course Description

We will consider important software vulnerabilities and attacks that exploit them -- such as buffer overflows, SQL injection, and session hijacking -- and we will consider defenses that prevent or mitigate these attacks, including advanced testing and program analysis techniques. Importantly, we take a "build security in" mentality, considering techniques at each phase of the development cycle that can be used to strengthen the security of software systems. Successful learners in this course typically have completed sophomore/junior-level undergraduate work in a technical field, have some familiarity with programming, ideally in C/C++ and one other "managed" program language (like ML or Java), and have prior exposure to algorithms. Students not familiar with these languages but with others can improve their skills through online web tutorials.

The Curriculum

  • Low-level security: Attacks and exploits
  • Defending against low-level exploits
  • Web security: Attacks and defenses
  • Designing and Building Secure Software
  • Static Program Analysis
  • Penetration and Fuzz Testing