1 / 4

Software Security Lecture 11

Software Security Lecture 11. Fang Yu Dept. of MIS, National Chengchi University Spring 2011. Announcement. Next week, we will have an invited speaker Michael from Atonmix for the special lecture on iOS development. For your projects:

travis-richard
Download Presentation

Software Security Lecture 11

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Software SecurityLecture 11 Fang Yu Dept. of MIS, National Chengchi University Spring 2011

  2. Announcement • Next week, we will have an invited speaker Michael from Atonmix for the special lecture on iOS development. • For your projects: • “WebGoat Handbook”: Anthony Cimo, Alexis Kirat, Kuan-Ming Chen and I-Yang Dong • “Power Password Craking”:JuiletteMaxime Lessing, Hsing Huang and Chen-Yi Yang • “Nmap Port Scan”: Jorinavan Malsen,  Eric Huang and Ruei-Chen Dai • “Static Analysis via Stranger”: Adam Fremd, Vincent Liou and Ruei-Jiun Liang

  3. Announcement • Project presentation/tool demonstration • Prepare an hour presentation to summarize your project • 6/1 : WebGoat, PCL • 6/8: Namp, Stranger • Final report (~10 pages) and system/code is due on 6/15

  4. Outline • I will present my paper “Patching Vulnerabilities with Sanitization Synthesis” • I will also introduce to you our tool “Stranger” • We will also have three paper discussions • Toward Automated Detection of Logic Vulnerabilities in Web Applications (by Eric), • Static Detection of Security Vulnerabilities in Scripting Languages (by Alex), and • Static Detection of Cross-site Scripting Vulnerabilities (by Juliette Lessing)

More Related