COMP SCI 4412 - Secure Software Engineering

North Terrace Campus - Semester 2 - 2023

This course will introduce the theoretical concepts and practical approaches and tools that support the security concerns in the whole systems development lifecycle resulting in software that is secure by default. The course will cover a wide range of software security topics ranging from as security as a cross-cutting concern, methodological approaches to improving software security during different phases of software development lifecycle, integrating secure software development principles and patterns into software development processes, contemporary paradigm of secure continuous software engineering, DevSecOps. The course will be offered in a workshop style mode with small and large parts of software development projects being the major types of assessment tasks.

  • General Course Information
    Course Details
    Course Code COMP SCI 4412
    Course Secure Software Engineering
    Coordinating Unit Computer Science
    Term Semester 2
    Level Undergraduate
    Location/s North Terrace Campus
    Units 3
    Contact Up to 3 hours per week
    Available for Study Abroad and Exchange Y
    Prerequisites COMP SCI 2201
    Incompatible COMP SCI 4812
    Assessment Assignments and quizzes
    Course Staff

    Course Coordinator: Professor Ali Babar

    Course Timetable

    The full timetable of all activities for this course can be accessed from Course Planner.

  • Learning Outcomes
    Course Learning Outcomes
    1. Understand and argue the importance of security during the development of software systems
    2. Understand and consider the significance of security in various stages of the software development process
    3. Elicit, analyse, specify, and comply with the security requirements for a software system
    4. Design and evaluate software design that incorporate security measures at multiple layers of abstraction
    5. Develop skills to write code that is secure in the face of sophisticated attack vectors
    6. Apply tools and approaches for identifying security defects and vulnerabilities in software systems
    7. Understand the severity and underlying technologies behind insider and outsider threats and attack vectors
    8. Engineer secure software for leading edge technologies such as cloud, IoT, and edge computing
    University Graduate Attributes

    This course will provide students with an opportunity to develop the Graduate Attribute(s) specified below:

    University Graduate Attribute Course Learning Outcome(s)

    Attribute 1: Deep discipline knowledge and intellectual breadth

    Graduates have comprehensive knowledge and understanding of their subject area, the ability to engage with different traditions of thought, and the ability to apply their knowledge in practice including in multi-disciplinary or multi-professional contexts.

    1, 2, 3, 5

    Attribute 2: Creative and critical thinking, and problem solving

    Graduates are effective problems-solvers, able to apply critical, creative and evidence-based thinking to conceive innovative responses to future challenges.

    1, 2, 3, 6

    Attribute 3: Teamwork and communication skills

    Graduates convey ideas and information effectively to a range of audiences for a variety of purposes and contribute in a positive and collaborative manner to achieving common goals.

    4, 5, 6, 8

    Attribute 4: Professionalism and leadership readiness

    Graduates engage in professional behaviour and have the potential to be entrepreneurial and take leadership roles in their chosen occupations or careers and communities.

    2, 6, 7

    Attribute 5: Intercultural and ethical competency

    Graduates are responsible and effective global citizens whose personal values and practices are consistent with their roles as responsible members of society.

    1, 7, 8

    Attribute 8: Self-awareness and emotional intelligence

    Graduates are self-aware and reflective; they are flexible and resilient and have the capacity to accept and give constructive feedback; they act with integrity and take responsibility for their actions.

    3, 4, 5
  • Learning & Teaching Activities
    Learning & Teaching Modes
    This course consists of 12 weeks of different types of learning and teaching activities such as seminar style lectures, moderated discussions on the core topics with relevant industrial examples, guest speakers, students’ led discussions and project work. There will be 10-12 seminar sessions led/moderated by the teaching team. There will be 6 working sessions led/moderated by the teaching team.
    Workload

    The information below is provided as a guide to assist students in engaging appropriately with the course requirements.

    Each student is expected to spend approximately 12 hours on this course (including the hours spent in the seminar and working sessions).
    Learning Activities Summary

    No information currently available.

  • Assessment

    The University's policy on Assessment for Coursework Programs is based on the following four principles:

    1. Assessment must encourage and reinforce learning.
    2. Assessment must enable robust and fair judgements about student performance.
    3. Assessment practices must be fair and equitable to students and give them the opportunity to demonstrate what they have learned.
    4. Assessment must maintain academic standards.

    Assessment Summary
    Assessments

    Assessment Task Task Type Due* Weight Outcomes ACS CBOK Areas
    Assignemnt Formative Weeks 3, 6, 9 50% 1, 2, 3, 4, 5 1.1, 1.2, 2.4, 3.1, 3.2, 4.1, 4.2, 4.3
    Group Project Formative + Summative Week 10 30% 5, 6, 7, 8 2.4, 3.2, 4.3
    Hackathon Summative Week 12 20% 5, 6, 7, 8 1.1, 1.2, 2.4, 3.1, 3.2, 4.1, 4.2, 4.3

    * The specific due date for each assessment task will be available on MyUni.

    ACS CBOK Areas

    CBOK is the Core Body of Knowledge for ICT Professionals defined by the Australian Computer Society. The alignment in the table above corresponds with the following CBOK Areas:

    1. Problem Solving
    1.1 Abstraction
    1.2 Design

    2. Professional Knowledge
    2.1 Ethics
    2.2 Professional expectations
    2.3 Teamwork concepts & issues
    2.4 Interpersonal communications
    2.5 Societal issues
    2.6 Understanding of ICT profession

    3. Technology resources
    3.1 Hardware & Software
    3.2 Data & information
    3.3 Networking

    4. Technology Building
    4.1 Programming
    4.2 Human factors
    4.3 Systems development
    4.4 Systems acquisition

    5. ICT Management
    5.1 IT governance & organisational
    5.2 IT project management
    5.3 Service management
    5.4 Security management
    Assessment Detail

    No information currently available.

    Submission

    No information currently available.

    Course Grading

    Grades for your performance in this course will be awarded in accordance with the following scheme:

    M10 (Coursework Mark Scheme)
    Grade Mark Description
    FNS   Fail No Submission
    F 1-49 Fail
    P 50-64 Pass
    C 65-74 Credit
    D 75-84 Distinction
    HD 85-100 High Distinction
    CN   Continuing
    NFE   No Formal Examination
    RP   Result Pending

    Further details of the grades/results can be obtained from Examinations.

    Grade Descriptors are available which provide a general guide to the standard of work that is expected at each grade level. More information at Assessment for Coursework Programs.

    Final results for this course will be made available through Access Adelaide.

  • Student Feedback

    The University places a high priority on approaches to learning and teaching that enhance the student experience. Feedback is sought from students in a variety of ways including on-going engagement with staff, the use of online discussion boards and the use of Student Experience of Learning and Teaching (SELT) surveys as well as GOS surveys and Program reviews.

    SELTs are an important source of information to inform individual teaching practice, decisions about teaching duties, and course and program curriculum design. They enable the University to assess how effectively its learning environments and teaching practices facilitate student engagement and learning outcomes. Under the current SELT Policy (http://www.adelaide.edu.au/policies/101/) course SELTs are mandated and must be conducted at the conclusion of each term/semester/trimester for every course offering. Feedback on issues raised through course SELT surveys is made available to enrolled students through various resources (e.g. MyUni). In addition aggregated course SELT data is available.

  • Student Support
  • Policies & Guidelines
  • Fraud Awareness

    Students are reminded that in order to maintain the academic integrity of all programs and courses, the university has a zero-tolerance approach to students offering money or significant value goods or services to any staff member who is involved in their teaching or assessment. Students offering lecturers or tutors or professional staff anything more than a small token of appreciation is totally unacceptable, in any circumstances. Staff members are obliged to report all such incidents to their supervisor/manager, who will refer them for action under the university's student’s disciplinary procedures.

The University of Adelaide is committed to regular reviews of the courses and programs it offers to students. The University of Adelaide therefore reserves the right to discontinue or vary programs and courses without notice. Please read the important information contained in the disclaimer.