Internal Preview! The data shown below is not valid for students! Please refer to the official Module Descriptions at the Examination Office.
Foundations of Web Security FoWS

General

study semester
5-6
standard study semester
6
cycle
occasional
duration
1 semester
SWS
4
ECTS
6
teaching language
English

People

responsible
Dr. Ben Stock
lectures
Dr. Ben Stock

Assessment & Grades

entrance requirements

Security or Foundations of Cyber Security I + II

assessment / exams

Projekt und schriftliche Abschlussklausur

grade

Das Modul ist insgesamt bestanden, wenn die Prüfungsleistung bestanden wurde.

Workload

course type /weekly hours
  2 h lectures
+ 2 h tutorial
= 4 h (weekly)
total workload
   60 h of classes
+ 120 h private study
= 180 h (= 6 ECTS)

Aims / Competences to be developed

The students will acquire a practical understanding of the security threats a modern Web application is faced with. The students fully comprehend the attack surface of applications and know the necessary countermeasures and mitigations for a wide range of attacks.

Content

  • Historical evolution of the Web
  • Client-side security (e.g., Cross-Site Scripting, Cross-Site Script Inclusion, Cross-Site Request Forgery)
  • User-centric security (e.g., Clickjacking & Phishing)
  • Server-side security (e.g., SQL injections, command injections)
  • Infrastructure security (e.g., HTTPS & attacks against it)

Literature & Reading

The teaching material will be in English and it will be announced at the beginning of the lecture.

Additional Information

Curriculum

This module is part of the following study programmes:

Cybersicherheit BSc: Vertiefungsvorlesungen der Cybersicherheit
study semester: 5-6 / standard study semester: 6
Cybersecurity MSc: Vertiefungsvorlesungen Cybersecurity
study semester: 1-3 / standard study semester: 4
Cybersecurity BSc (English): Kernthemen der Cybersicherheit
study semester: 5-6 / standard study semester: 6