Application and Software Security (module BTI-7262)

Goals of this course

This part of the course aims at providing a good overview of a major software security issues: Web Security.
The students will see the most dangerous web securities issues (for instance XSS, XRSF, SQL injection, ...). They know how such flows can be exploited and know how one can protect a site. They have experienced this attacks on example web sites.

Schedule

The course is given on Fridays in Biel, 8:30 - 11:55 and 12:45 - 16:10.
Courses are taught by Hansjürg Wenger, Kai Brünnler, Emmanuel Benoist and Gerhard Hassenstein. The following schedule represents the courses of the Fall Term 2020-2021.
Day Contents
18.09.2020 (Morning)Hansjürg Wenger
18.09.2020 (Afternoon)Gerhard Hassenstein
25.09.2020 (Morning)Hansjürg Wenger
25.09.2020 (Afternoon)Gerhard Hassenstein
02.10.2020 (Morning)Hansjürg Wenger
02.10.2020 (Afternoon)Gerhard Hassenstein
09.10.2020 (Morning)Hansjürg Wenger
09.10.2020 (Afternoon)Gerhard Hassenstein
16.10.2020 (Morning)Hansjürg Wenger
16.10.2020 (Afternoon)Gerhard Hassenstein
23.10.2020 (Morning)Hansjürg Wenger
23.10.2020 (Afternoon)Gerhard Hassenstein
30.10.2020 (Morning)Hansjürg Wenger
30.10.2020 (Afternoon)Gerhard Hassenstein
06.11.2020 (Morning)Hansjürg Wenger
06.11.2020 (Afternoon)Gerhard Hassenstein
13.11.2020 (Morning)Kai Bünnler
13.11.2020 (Afternoon)Emmanuel Benoist- Injections
20.11.2020 (Morning)Kai Bünnler
20.11.2020 (Afternoon)Emmanuel Benoist - Cross Site Scripting
27.11.2020 (Morning)Kai Bünnler
27.11.2020 (Afternoon)Emmanuel Benoist- Broken Access Control
04.12.2020 (Morning)Kai Bünnler
04.12.2020 (Afternoon)Emmanuel Benoist- Broken authentication
11.12.2020 (Morning)Kai Bünnler
11.12.2020 (Afternoon)Emmanuel Benoist - Sensitive Data Exposure
18.12.2020 (Morning)Kai Bünnler
18.12.2020 (Afternoon)Emmanuel Benoist - Other OWASP Top 10 problems
25.12.2020 (Morning) No course: Weihnachtsferien / Vacances de Noel
25.12.2020 (Afternoon) No course: Weihnachtsferien / Vacances de Noel
01.01.2021 (Morning) No course: Weihnachtsferien / Vacances de Noel
01.01.2021 (Afternoon) No course: Weihnachtsferien / Vacances de Noel
08.01.2021 (Morning) No course: Weihnachtsferien / Vacances de Noel
08.01.2021 (Afternoon) No course: Weihnachtsferien / Vacances de Noel
10.01.2020 (Morning) No course: Weihnachtsferien / Vacances de Noel
10.01.2020 (Afternoon) No course: Weihnachtsferien / Vacances de Noel
15.01.2020 (Morning)Kai Bünnler
15.01.2020 (Afternoon)Emmanuel Benoist - Audit-Methodology and Risk Analysis
22.01.2020 (Morning) No course: Finaltag
22.01.2020 (Afternoon) No course: Finaltag

Evaluation

This module is part of the module BTI-7262 "Pa" module. Students will be examinated orally (30 minutes for the whole module). This module gives 8 ECTS credits and is part of the Qualification Group C.
This course is also an optional module of the Master of Digital Forensics of the Unil. It counts for 3 ECTS. This module is examinated with an oral exam of 20 minutes.

More information:

Moodle page for this course