CSC2031 : Security Programming
- Offered for Year: 2025/26
- Module Leader(s): Dr John Mace
- Teaching Assistant: Mr Behrad Samari
- Owning School: Computing
- Teaching Location: Newcastle City Campus
Semesters
Your programme is made up of credits, the total differs on programme to programme.
| Semester 1 Credit Value: | 20 |
| ECTS Credits: | 10.0 |
| European Credit Transfer System | |
Aims
All computer scientist graduates should have a fundamental understanding of security when designing and implementing modern day software applications. This module explores key security challenges faced by these applications and the security techniques commonly used to manage them. Students will gain first-hand experience in employing secure software practices and implementing security mechanisms to help address those challenges.
Outline Of Syllabus
1. Security Foundations
2. Flask Web Applications.
3. Web Application Security.
4. User Registration.
5. User Authentication.
Teaching Methods
Teaching Activities
| Category | Activity | Number | Length | Student Hours | Comment |
|---|---|---|---|---|---|
| Guided Independent Study | Assessment preparation and completion | 88 | 1:00 | 88:00 | Summative Portfolio and Computer Assessment courseworks. |
| Scheduled Learning And Teaching Activities | Lecture | 22 | 1:00 | 22:00 | Lectures (in person). |
| Guided Independent Study | Assessment preparation and completion | 6 | 0:30 | 3:00 | Formative Canvas quiz on theoretical elements. |
| Structured Guided Learning | Lecture materials | 11 | 2:00 | 22:00 | Lecture follow-up with review of lecture materials and recordings. |
| Scheduled Learning And Teaching Activities | Practical | 12 | 2:00 | 24:00 | Practical learning with demonstrator support & drop-in surgery. |
| Structured Guided Learning | Structured non-synchronous discussion | 12 | 1:00 | 12:00 | Non-synchronous online discussion board with Q & A forum around lecture materials and assessment. |
| Guided Independent Study | Independent study | 29 | 1:00 | 29:00 | Background reading to reinforce and strengthen knowledge. |
| Total | 200:00 |
Teaching Rationale And Relationship
Lectures will present the fundamental and theoretical material to facilitate the intended knowledge outcomes. These will be followed by substantial practical time to enable students to develop the intended skills outcomes through implementing the techniques introduced in the lectures together with supporting asynchronous online material.
Assessment Methods
The format of resits will be determined by the Board of Examiners
Other Assessment
| Description | Semester | When Set | Percentage | Comment |
|---|---|---|---|---|
| Computer assessment | 1 | M | 60 | Single programming-based exercise. |
| Portfolio | 1 | M | 40 | Set of short programming-based exercises. |
Formative Assessments
Formative Assessment is an assessment which develops your skills in being assessed, allows for you to receive feedback, and prepares you for being assessed. However, it does not count to your final mark.
| Description | Semester | When Set | Comment |
|---|---|---|---|
| Computer assessment | 1 | M | Canvas quiz on theoretical elements. |
Assessment Rationale And Relationship
This is a largely practical subject area and therefore merits summative assessment via digital programming-based coursework coupled with formative assessment of underpinning security theory via a Canvas-based quiz.
The summative portfolio component will assess students’ programming and problem-solving skills when choosing and implementing software-based solutions in different programming languages to several stand-alone real-world security challenges. Students will be expected to select and submit a number of their solutions for assessment.
The summative computer assessment coursework will assess students’ programming best-practices and skills when implementing and combining security solutions within a larger single web-based computer application scenario.
The formative Canvas quiz assessment will assess students’ understanding of the underpinning lecture material including the fundamental principles of security, the key security challenges faced by software applications, appropriate security techniques used to manage those security challenges and suitable programming practices when implementing security mechanisms.
Reading Lists
Timetable
- Timetable Website: www.ncl.ac.uk/timetable/
- CSC2031's Timetable