Educational guide

IDENTIFYING DATA

2018_19

Subject

SECURE DESIGN AND PROGRAMMING

Code

01733104

Study programme

1732 - MASTER UNIVERSITARIO EN INVESTIGACION EN CIBERSEGURIDAD (OL)

Descriptors

Credit.

Type

Year

Period

Compulsory

First

Language

Castellano

Prerequisites

Department

ING.MECANICA,INFORMAT.AEROESP.

Coordinador

FERNÁNDEZ LLAMAS , CAMINO

E-mail

cferll@unileon.es
jfgars@unileon.es
-

Lecturers

FERNÁNDEZ LLAMAS , CAMINO

GARCÍA SIERRA , JUAN FELIPE

MARTIN LIRAS , LUIS FRANCISCO

Web

http://

General description

Tribunales de Revisión

Tribunal titular
Cargo	Departamento	Profesor
Presidente	ING.MECANICA,INFORMAT.AEROESP.	MATELLAN OLIVERA , VICENTE
Secretario	ING.MECANICA,INFORMAT.AEROESP.	CUERVO FERNANDEZ , EVA MARIA
Vocal	ING.MECANICA,INFORMAT.AEROESP.	BARREIRO GARCIA , JOAQUIN

Tribunal suplente
Cargo	Departamento	Profesor
Presidente	ING.MECANICA,INFORMAT.AEROESP.	ALIJA PEREZ , JOSE MANUEL
Secretario	ING.MECANICA,INFORMAT.AEROESP.	PANIZO ALONSO , LUIS
Vocal	ING.MECANICA,INFORMAT.AEROESP.	CASTEJON LIMAS , MANUEL

Competencies

Type A	Code	Competences Specific
	A17079
	A17080
Type B	Code	Competences Transversal
	B5220
	B5221
	B5222
	B5223
	B5224
	B5225
Type C	Code	Competences Nuclear
	C1
	C2
	C3
	C4
	C5

Learning aims

	Competences
Design and develop secure software avoiding the most common software vulnerabilities	A17080	B5224 B5225	C1 C2 C4 C5
Program and analyze tasks in different programming languages in the area of communication and software security	A17079	B5224 B5225	C1 C2 C4 C5
Learn to communicate conclusions		B5220 B5221 B5222 B5223	C3

Contents

Topic	Sub-topic
	Introduction to Software Security
	Design and Architecture of Secure Software Systems
	Secure Engineering Methodologies
	Software Defined Secure Programming

Planning

Methodologies :: Tests
	Class hours	Hours outside the classroom	Total hours
Personal tuition	3	0	3

Laboratory practicals	20	48	68
Assignments	0	28	28

Lecture	20	20	40

Objective short-answer tests	3	4	7
Practical tests	2	2	4

(*)The information in the planning table is for guidance only and does not take into account the heterogeneity of the students.

Methodologies

Methodologies ::

	Description
Personal tuition	Monitoring student activity and progression. Advising, correcting and proposing improvement activities.
Laboratory practicals	Programming exercises based on lectures under the supervision of the teacher.
Assignments	Individual programming tasks that will be corrected by the teacher and defended by the student.
Lecture	Explanation of theoretical knowledge with the active participation of students.

Personalized attention

Personal tuition

Description

The web page at agora.unileon.es includes the office hours for every teacher involved in the course.

Assessment

	Description	Qualification
Assignments	Coding and individual defense of the code.	40%
Objective short-answer tests	Individual assessment of theoretical contents.	30%
Practical tests	Evaluation of experience obtained by performing the practical assignments of the course.	20%
Others	Part of the final mark assigned by the teacher depending on students active participation in the course.	10%

Other comments and second call

Sources of information

Access to Recommended Bibliography in the Catalog ULE

Basic	Fred Long, Dhruv Mohindra, Robert . Seacord, Dean F. Sutherland, David Svoboda, Java Coding Guidelines: 75 Recommendations for Reliable and Secure Programs, Addison-Wesley Professional, SEI Series in Software Engineering Robert C. Seacord, Secure Coding in C and C++, Addison-Wesley Professional, Second Edition.

Complementary

Recommendations