| Academic Year |
2024Year |
School/Graduate School |
Information Media Center |
| Lecture Code |
82160001 |
Subject Classification |
Specialized Education |
| Subject Name |
Webセキュリティ技術演習II |
Subject Name
(Katakana) |
ウェブセキュリティギジュツエンシュウニ |
Subject Name in
English |
Exercises in Web Security II |
| Instructor |
WATANABE HIDENOBU |
Instructor
(Katakana) |
ワタナベ ヒデノブ |
| Campus |
Higashi-Hiroshima |
Semester/Term |
3rd-Year, Second Semester, 4Term |
| Days, Periods, and Classrooms |
(4T) Fri9-10:IMC-Main 2F Seminar Rm |
| Lesson Style |
Seminar |
Lesson Style
(More Details) |
|
| Exercise |
| Credits |
1.0 |
Class Hours/Week |
|
Language of Instruction |
J
:
Japanese |
| Course Level |
2
:
Undergraduate Low-Intermediate
|
| Course Area(Area) |
25
:
Science and Technology |
| Course Area(Discipline) |
02
:
Information Science |
| Eligible Students |
Students who are registered to "Computer Science Course" in School of Informatics and Data Science / Information Media Center, Students who are interested in a web security technique |
| Keywords |
Web Security, Hacking Demo in Web Site, Vulnerability Countermeasure for Web Site |
| Special Subject for Teacher Education |
|
Special Subject |
|
Class Status
within Educational
Program
(Applicable only to targeted subjects for undergraduate students) | |
|---|
Criterion referenced
Evaluation
(Applicable only to targeted subjects for undergraduate students) | |
|---|
Class Objectives
/Class Outline |
The aim of this course is to help students acquire an understanding of the fundamental principles of Web security along with the necessary skills and knowledge needed to develop a secure web site. |
| Class Schedule |
lesson1 Cross-Site Request Forgery
lesson2 Directory Traversal, OS Command Injection
lesson3 Bug in Session Management
lesson4 Bug in Authentication and Authorization Control, HTTP Header Injection, Buffer Overflow
lesson5 Clickjacking, Mail Header Injection
lesson6 Error Message, Open Redirection
lesson7 Comprehensive Training
lesson8 Small Test
lesson9
lesson10
lesson11
lesson12
lesson13
lesson14
lesson15 |
Text/Reference
Books,etc. |
I will prepare all handouts for the exercise |
PC or AV used in
Class,etc. |
|
| (More Details) |
Handouts, Personal computer (BYOD) |
| Learning techniques to be incorporated |
|
Suggestions on
Preparation and
Review |
Basically, the handouts will be provided by the website using an E-learning system. Please feel free to use them for your preparation and review. |
| Requirements |
Take both exercises in web security Ⅰand Ⅱ
Attend all class in principle
Sign and seal on the pledge.
|
| Grading Method |
Small test (100%) |
| Practical Experience |
|
| Summary of Practical Experience and Class Contents based on it |
|
| Message |
Please prepare a computer running Windows 10 or 11
Students are expected to be 10 or less
The contents of the exercise include dangerous vulnerability attack methods. Students are required to agree to the pledge that they will not use them for any purpose except performing legitimate operations |
| Other |
|
Please fill in the class improvement questionnaire which is carried out on all classes.
Instructors will reflect on your feedback and utilize the information for improving their teaching. |