Course Desc: Prerequisite: SDEV 300. A hands-on study of programming secure applications in the cloud. The goal is to design and build applications in the cloud while implementing appropriate security policies. Topics include cloud computing models, risks and security challenges of programming in the cloud, and data security.
Course Desc: Prerequisite: SDEV 360. An examination of the risks and threats associated with application development. The objective is to identify valuable assets, create system architecture diagrams, decompose applications, identify and prioritize threats, and document results in a threat model. Topics include security requirements and objectives, threat identification and mitigation, and calculating risk.
Course Desc: Prerequisite: SDEV 425. A hands-on study of exploits, attacks, and techniques used to penetrate application security defenses and strategies for mitigating such attacks. The objective is to apply appropriate methodologies for software penetration testing to identify application weaknesses and logic flaws and to test and create scripts for exploitation and discovery. Topics include web architecture, application infrastructure, reconnaissance, discovery, mapping, and exploitation.