Web Application Security detailed syllabus for Information Technology (IT) for 2021 regulation curriculum has been taken from the Anna Universities official website and presented for the IT students. For course code, course name, number of credits for a course and other scheme related information, do visit full semester subjects post given below.
For Information Technology 5th Sem scheme and its subjects, do visit IT 5th Sem 2021 regulation scheme. For Professional Elective-II scheme and its subjects refer to IT Professional Elective-II syllabus scheme. The detailed syllabus of web application security is as follows.
Course Objectives:
Download the iStudy App for all syllabus and other updates.
Unit I
FUNDAMENTALS OF WEB APPLICATION SECURITY 6 The history of Software Security-Recognizing Web Application Security Threats, Web Application Security, Authentication and Authorization, Secure Socket layer, Transport layer Security, Session Management-Input Validation
Unit II
Download the iStudy App for all syllabus and other updates.
Unit III
SECURE API DEVELOPMENT 6 API Security- Session Cookies, Token Based Authentication, Securing Natter APIs: Addressing threats with Security Controls, Rate Limiting for Availability, Encryption, Audit logging, Securing service-to-service APIs: API Keys , OAuth2, Securing Microservice APIs: Service Mesh, Locking Down Network Connections, Securing Incoming Requests.
Unit IV
Download the iStudy App for all syllabus and other updates.
Unit V
HACKING TECHNIQUES AND TOOLS 7 Social Engineering, Injection, Cross-Site Scripting(XSS), Broken Authentication and Session Management, Cross-Site Request Forgery, Security Misconfiguration, Insecure Cryptographic Storage, Failure to Restrict URL Access, Tools: Comodo, OpenVAS, Nexpose, Nikto, Burp Suite, etc.
Practical Exercises:
Download the iStudy App for all syllabus and other updates.
Course Outcomes:
- Understanding the basic concepts of web application security and the need for it
- Be acquainted with the process for secure development and deployment of web applications
- Acquire the skill to design and develop Secure Web Applications that use Secure APIs
- Be able to get the importance of carrying out vulnerability assessment and penetration testing
- Acquire the skill to think like a hacker and to use hackers tool sets
Text Books:
- Andrew Hoffman, Web Application Security: Exploitation and Countermeasures for Modern Web Applications, First Edition, 2020, OReilly Media, Inc.
- Bryan Sullivan, Vincent Liu, Web Application Security: A Beginners Guide, 2012, The McGraw-Hill Companies.
- Neil Madden, API Security in Action, 2020, Manning Publications Co., NY, USA.
Reference Books:
Download the iStudy App for all syllabus and other updates.
For detailed syllabus of all the other subjects of Information Technology 5th Sem, visit IT 5th Sem subject syllabuses for 2021 regulation.
For all Information Technology results, visit Anna University IT all semester results direct link.