Web Application Security detailed syllabus for Computer Science & Engineering (CSE) for 2021 regulation curriculum has been taken from the Anna Universities official website and presented for the CSE students. For course code, course name, number of credits for a course and other scheme related information, do visit full semester subjects post given below.
For Computer Science & Engineering 5th Sem scheme and its subjects, do visit CSE 5th Sem 2021 regulation scheme. For Professional Elective-II scheme and its subjects refer to CSE Professional Elective-II syllabus scheme. The detailed syllabus of web application security is as follows.
Course Objectives:
Download the iStudy App for all syllabus and other updates.
Unit I
FUNDAMENTALS OF WEB APPLICATION SECURITY 6 The history of Software Security-Recognizing Web Application Security Threats, Web Application Security, Authentication and Authorization, Secure Socket layer, Transport layer Security, Session Management-Input Validation
Unit II
Download the iStudy App for all syllabus and other updates.
Unit III
SECURE API DEVELOPMENT 6 API Security- Session Cookies, Token Based Authentication, Securing Natter APIs: Addressing threats with Security Controls, Rate Limiting for Availability, Encryption, Audit logging, Securing service-to-service APIs: API Keys , OAuth2, Securing Microservice APIs: Service Mesh, Locking Down Network Connections, Securing Incoming Requests.
Unit IV
Download the iStudy App for all syllabus and other updates.
Unit V
HACKING TECHNIQUES AND TOOLS 7 Social Engineering, Injection, Cross-Site Scripting(XSS), Broken Authentication and Session Management, Cross-Site Request Forgery, Security Misconfiguration, Insecure Cryptographic Storage, Failure to Restrict URL Access, Tools: Comodo, OpenVAS, Nexpose, Nikto, Burp Suite, etc.
Practical Exercises:
Download the iStudy App for all syllabus and other updates.
Course Outcomes:
- Understanding the basic concepts of web application security and the need for it
- Be acquainted with the process for secure development and deployment of web applications
- Acquire the skill to design and develop Secure Web Applications that use Secure APIs
- Be able to get the importance of carrying out vulnerability assessment and penetration testing
- Acquire the skill to think like a hacker and to use hackers tool sets
Text Books:
- Andrew Hoffman, Web Application Security: Exploitation and Countermeasures for Modern Web Applications, First Edition, 2020, OReilly Media, Inc.
- Bryan Sullivan, Vincent Liu, Web Application Security: A Beginners Guide, 2012, The McGraw-Hill Companies.
- Neil Madden, API Security in Action, 2020, Manning Publications Co., NY, USA.
Reference Books:
Download the iStudy App for all syllabus and other updates.
For detailed syllabus of all the other subjects of Computer Science & Engineering 5th Sem, visit CSE 5th Sem subject syllabuses for 2021 regulation.
For all Computer Science & Engineering results, visit Anna University CSE all semester results direct link.