Module Description

Module: Application Security

Courses:

TitleTypeHrs/WeekPeriod
Application SecurityLecture3Summer Semester
Application SecurityRecitation Section (small)2Summer Semester

Module Responsibility:

Prof. Dieter Gollmann

Admission Requirements:

None

Recommended Previous Knowledge:

Familiarity with Information security, fundamentals of cryptography, Web protocols and the architecture of the Web

Educational Objectives:

Professional Competence

Theoretical Knowledge

Students can name current approaches for securing selected applications, in particular of web applications

Capabilities

Students are capable of

  • performing a security analysis
  • developing security solutions for distributed applications
  • recognizing the limitations of existing standard solutions  

Personal Competence

Social Competence

Students are capable of appreciating the impact of security problems on those affected and of the potential responsibilities for their resolution.

Autonomy

Students are capable of acquiring knowledge independently from professional publications, technical standards, and other sources, and are capable of applying newly acquired knowledge to new problems.

ECTS-Credit Points Module:

6 ECTS

Examination:

Written exam

Workload in Hours:

Independent Study Time: 110, Study Time in Lecture: 70


Course: Application Security

Lecturer:

Dieter Gollmann

Language:

English

Period:

Summer Semester

Content:

  • Email security 
  • Web Services security
  • Security in Web applications
  • Access control
  • Trust Management
  • Trusted Computing
  • Digital Rights Management
  • Security Solutions for selected applications

Literature:

Webseiten der OMG, W3C, OASIS, WS-Security, OECD, TCG

D. Gollmann: Computer Security, 3rd edition, Wiley (2011)

R. Anderson: Security Engineering, 2nd edition, Wiley (2008)

U. Lang: CORBA Security, Artech House, 2002