CSC8204 : Secure Software Development
- Offered for Year: 2023/24
- Module Leader(s): Dr Stephen Riddle
- Lecturer: Professor Thomas Gross
- Owning School: Computing
- Teaching Location: Newcastle City Campus
Semesters
| Semester 1 Credit Value: | 10 |
| ECTS Credits: | 5.0 |
Aims
The module is concerned with the principles and practices of secure software design and security analysis. It will cover model-driven security which is concerned with engineering methods to support development of security-critical software systems. In addition, it will cover program verification techniques.
Concepts taught will include formal methods, common software security vulnerabilities and threats, tools and techniques for secure software design and how they are integrated into the software development lifecycle to reason and enforce security.
Outline Of Syllabus
Syllabus will among other things include the following:
• Principles of Secure Software Development
• Model-Driven Security
• Software Vulnerabilities
• Information Flow Control
• Static Analysis
• Program Verification
Teaching Methods
Teaching Activities
| Category | Activity | Number | Length | Student Hours | Comment |
|---|---|---|---|---|---|
| Scheduled Learning And Teaching Activities | Lecture | 12 | 1:00 | 12:00 | Lectures in person or online synchronous. |
| Guided Independent Study | Directed research and reading | 22 | 1:00 | 22:00 | Background reading. |
| Scheduled Learning And Teaching Activities | Small group teaching | 10 | 1:00 | 10:00 | Practical sessions/Workshops (in person or online) synchronous scheduled. |
| Guided Independent Study | Project work | 36 | 1:00 | 36:00 | Coursework. |
| Guided Independent Study | Independent study | 20 | 1:00 | 20:00 | Lecture follow-up. |
| Total | 100:00 |
Teaching Rationale And Relationship
Lectures will be used to introduce the learning material and for demonstrating the key concepts by example. Students are expected to follow-up lectures within a few days by re- reading and annotating lecture notes to aid deep learning.
This is a very practical subject, and it is important that the learning materials are supported by opportunities provided by practical classes, either in person or supported online. Students are expected to spend time on coursework outside timetabled practical classes.
Assessment Methods
The format of resits will be determined by the Board of Examiners
Other Assessment
| Description | Semester | When Set | Percentage | Comment |
|---|---|---|---|---|
| Practical/lab report | 1 | M | 100 | Exercises in secure programming, logic and verification. |
Formative Assessments
| Description | Semester | When Set | Comment |
|---|---|---|---|
| Practical/lab report | 1 | M | Formative tutorial exercises. |
Assessment Rationale And Relationship
The coursework assessment assesses the design, tools selection and assessment skills on a substantial problem.
Reading Lists
Timetable
- Timetable Website: www.ncl.ac.uk/timetable/
- CSC8204's Timetable