Content, progress and pedagogy of the
- To familiarise the student with state-of-the-art research
within select areas of software security, e.g., language-based
security, secure information flow, secure programming languages,
- To enable the student to assess and evaluate proposed or novel
tools and techniques for software security.
- To familiarise the student with the theoretical foundations
underlying key areas of software security, e.g., access control
models, fuzzing, static analysis, symbolic execution, model
Must have knowledge about:
- the theoretical foundations for one or more of the studied
tools and techniques, in particular static analysis, model
checking, and fuzzing.
- and be able to explain the limitations of the studied theories,
tools, and techniques.
- and be able to explain key points about the studied
foundational theories, e.g., access control models or secure
Must be able to:
- deploy and use one or more software security tools or
techniques for security analysis of a small software project.
- evaluate potential (security related) benefits or drawbacks of
using the studied tools and theories on a small software
- identify the best tool or technique to solve specific software
Must have the competences to:
- assess and evaluate security relevance of different tools,
methods, and processes used for developing small software
- evaluate and propose or adapt existing techniques to perform
specific security related analyses of software, e.g., extending an
analysis method to cover new progamming languages or new language
- identify and research novel theories, tools, and techniques for
- communicate/teach core insights about novel and
state-of-the-art research in software security.
Type of instruction
Types of instruction are listed at the start of §17; Structure
and contents of the programme.
|Name of exam||Advanced Software Security|
|Type of exam|
Written or oral exam
|Assessment||7-point grading scale|
|Type of grading||Internal examination|
|Criteria of assessment||The criteria of assessment are stated in the Examination
Policies and Procedures|