Studienhandbuch | KV Web Security

Inhalt

Workload	Education level	Study areas	Responsible person	Hours per week	Coordinating university
3 ECTS	M1 - Master's programme 1. year	Computer Science	Michael Sonntag	2 hpw	Johannes Kepler University Linz

Detailed information

Original study plan

Master's programme Computer Science 2025W

Learning Outcomes

Competences
Students know about attack vectors, defense and recognition opportunities, and strategies to prevent security issues from arising in web applications. They can independently test web-based applications for vulnerabilities and recognize a (successful) attack (attempt). They can develop (more) secure web applications.

Skills	Knowledge
Students can: Recognize and analyze the most common kinds of attacks against web applications and evaluate their danger (K5) Analyze where a specific type of attack might be possible in a web application (K4) and implement a suitable countermeasure (K6) Apply general countermeasures during software development (K3) Test web applications against selected vulnerabilities (K3)	Types of attacks (such as SQL injections, cross-site scripting, cross-site request forgery, session stealing/fixation etc) Specific countermeasures for these attacks General methods of securing web applications (e.g. input validation, indirections) Examples of attacks (how they occurred) and how to perform them (testing for vulnerabilities) How to recognize such attacks, i.e. typical patterns for these types of attacks

Criteria for evaluation

Written exam

Methods

Lecture and discussion; example attacks on a demonstration website

Language

English

Study material

Slides

Changing subject?

Further information

https://www.jku.at/en/institute-of-networks-and-security/

Corresponding lecture

575WQUEWSCK10: KV Web Security (3 ECTS)

On-site course
Maximum number of participants	-
Assignment procedure	Direct assignment