INFORMATION TECHNOLOGIES (ENGLISH, NON-THESIS)
Master TR-NQF-HE: Level 7 QF-EHEA: Second Cycle EQF-LLL: Level 7

Course Introduction and Application Information

Course Code Course Name Semester Theoretical Practical Credit ECTS
CYS5119 Secure Web Software Development Fall 3 0 3 8
The course opens with the approval of the Department at the beginning of each semester

Basic information

Language of instruction: En
Type of course: Departmental Elective
Course Level:
Mode of Delivery: Face to face
Course Coordinator : Dr. Öğr. Üyesi AHMET NACİ ÜNAL
Course Objectives: Learning software assurance topic and learning principles of secure software development.

Learning Outputs

The students who have succeeded in this course;
Students will learn the following items: How to store software on escrow services? Requirements of secure software. Requirement of software certification. Principles of secure software development.

Course Content

Fundamentals of information assurance, SDLC, software maturity, security enhancement methods, security measurement methods.

Weekly Detailed Course Contents

Week Subject Related Preparation
1) Course outline Lecturer notes
2) Information assurance concept Lecturer notes
3) Necessity of software security Lecturer notes
4) Software licensing and certification Lecturer notes
5) Data escrow concept and its applications Lecturer notes
6) SDLC Lecturer notes
7) Secure software development Lecturer notes
8) Secure software development Lecturer notes
9) Secure software development patterns Lecturer notes
10) Software maturity Lecturer notes
11) Determining software security and software security metering Lecturer notes
12) Auditing of secure software development cycle Lecturer notes
13) Up-to-date discussion Lecturer notes
14) Up-to-date discussion Lecturer notes

Sources

Course Notes: Information Assurance Handbook: Effective Computer Security and Risk Management Strategies, Corey Schou, Steven Hernandez, 2014, McGraw-Hill Osborne Media. Secure and Resilient Software Development, Mark S. Merkow, Lakshmikanth Raghavan, 2010, Auerbach Publication.
References: Ders notları

Evaluation System

Semester Requirements Number of Activities Level of Contribution
Attendance 10 % 0
Laboratory 0 % 0
Application 0 % 0
Field Work 0 % 0
Special Course Internship (Work Placement) 0 % 0
Quizzes 0 % 0
Homework Assignments 4 % 10
Presentation 1 % 10
Project 0 % 0
Seminar 0 % 0
Midterms 1 % 20
Preliminary Jury 0 % 0
Final 1 % 60
Paper Submission 0 % 0
Jury 0 % 0
Bütünleme % 0
Total % 100
PERCENTAGE OF SEMESTER WORK % 40
PERCENTAGE OF FINAL WORK % 60
Total % 100

ECTS / Workload Table

Activities Number of Activities Duration (Hours) Workload
Course Hours 14 3 42
Laboratory 0 0 0
Application 0 0 0
Special Course Internship (Work Placement) 0 0 0
Field Work 0 0 0
Study Hours Out of Class 14 12 168
Presentations / Seminar 2 3 6
Project 0 0 0
Homework Assignments 4 8 32
Quizzes 0 0 0
Preliminary Jury 0 0 0
Midterms 1 20 20
Paper Submission 0 0 0
Jury 0 0 0
Final 1 20 20
Total Workload 288

Contribution of Learning Outcomes to Programme Outcomes

No Effect 1 Lowest 2 Low 3 Average 4 High 5 Highest
           
Program Outcomes Level of Contribution
1) Uses basic Software Engineering knowledge and competencies.
2) Applies the software development ability that is necessary for software engineering applications.
3) Uses data structures and applies information about algorithm development.
4) Develops system programs on operating systems.
5) Defines computer organization, design and architectures.
6) Creates the structure of computer networks and network security.
7) Uses business intelligence, data mining and data analysis tools, applies techniques about them.
8) Develops database applications and WEB based programs.
9) Defines, analyzes, designs and manages information technologies projects.
10) Uses and develops technology-based environments and tools in education.
11) Detects, identifies and solves information technology needs of the business environment.
12) Uses the capabilities of information technologies within the rules of professional responsibility and ethics.