Students know about attack vectors, defense and recognition opportunities and strategies to prevent security issues from arising. They can test web-based applications for vulnerabilities.
Subject
Types of attacks (such as SQL injections, cross-site scripting, cross-site request forgery, session stealing/fixation), counter measures (including input validation, nonces, indirections). Examples of attacks and their recognition. Discovering and adjusting security relevant programming mistakes and countermeasures in drafting and implementation.
