Sep 21, 2023  
Loyola Marymount University Bulletin 2021-2022 
Loyola Marymount University Bulletin 2021-2022 [ARCHIVED CATALOG]

SYEG 662 Secure Software Development

3 semester hours

Theoretical foundations and best practices in software development security. This course will examine the application of security techniques in all phases of the software life cycle (from requirements analysis through deployment and maintenance) with emphasis on writing secure code and application layer security. This course will provide introductions to the various methodologies to increase secure coding awareness and boost code integrity. Topics will cover common malicious attack vectors in application layer vulnerabilities such as SQL injections, Cross Site Scripting (XSS), and those found in the OWASP Top 10 CWE/SANS TOP 25 Most Dangerous Software Errors. The course will cover static and dynamic code analysis and identify tests, environments, tools, and the documentation of findings. As the tools necessary for effectively conducting secure software development activities largely depends on the technology and languages employed, common languages, platforms, development environments and the unique capabilities of each will be addressed. Coursework will include activities that enable the verification of conformance to establish quality standards (i.e., coding standards), verification of trades of systemic properties (e.g., performance, reliability, security, modifiability), and the instrumentation of the software to characterize risks related to systemic properties and standards nonconformance. This course will provide recommendations for incorporating security into Agile development and address the trends in moving towards SecDevOps. Prerequisites: competency in one systems language (e.g., C) and one scripting language (e.g., Python), and familiarity with basic networking principles.

Prerequisite: SYEG 560 .