dcalano / cs533-f23

ODU CS 433/533 Web Security, Fall 2023

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

ODU CS 433/533 Web Security, Fall 2023

Instructor: Michael L. Nelson mln@cs.odu.edu

Office Hours: Wednesdays 2-4 and by appointment

Time: Wednesdays 4:20pm - 7:00pm

Place: online to start the semester -- contact mln@cs.odu.edu for the Zoom URL.

Syllabus

Class Email list: https://groups.google.com/group/cs533-f23

CRNs: 23043, 23044, 23045 (433) and 23046, 23047, 23048 (533)

Course Objectives

The goal of this course is to review common web security vulnerabilities and exploits, as well as their corresponding defenses. There is an inherent tension between "web as simple document reader" and "web as application environment", and as the functionality of the web ecosystem increases, so do the vulnerabilities.

General concepts that students will learn: principles of web security, attacks and countermeasures, the browser security model, web app vulnerabilities, injection, denial-of-service, TLS attacks, privacy, fingerprinting, same-origin policy, cross site scripting, authentication, JavaScript security, emerging threats, defense-in-depth, techniques for writing secure code, web archiving, rehosting.

Specific technologies that students will learn: Git/GitHub, DOM/Javascript, CLI, Node.js, Twitter, Youtube.

Course Inspiration

This course is based on CS 253 Web Security, Stanford, Fall 2019. Special thanks to Feross Aboukhadijeh for generously sharing his course materials (although any errors are mine).

Class Schedule (subject to change; slides will be updated prior to class)

Assignments (subject to change)

About

ODU CS 433/533 Web Security, Fall 2023

License:MIT License


Languages

Language:DIGITAL Command Language 64.5%Language:HTML 20.1%Language:JavaScript 8.1%Language:Ruby 3.1%Language:Python 2.7%Language:Shell 0.9%Language:xBase 0.4%Language:Perl 0.2%