"Through the analysis of advanced security concepts, students will learn how to develop secure code that complies with security testing protocols. In addition to exploring and implementing security concepts through code, students will also learn why and how to apply encryption technologies and techniques to communicate securely." From the SNHU Academic Catalog c.a. Nov. 2023
- Vulnerability Assessment Report: Part I: this report involves using automated and manual static testing to reveal vulnerabilities in code, and then recommending fixes of said vulnerabilities. Previous cybercrimes and standards by which individuals and organisations can use as a guideline to protect themselves is also briefly discussed.
- Vulnerability Assessment Report: Part II: this is an extension of the report produced in the previous project. In it, I discuss techniques for implementing cryptography for data at rest and data in transit to protect the confidentality and integrity of said data. I also do automatic and manual static analysis to identify vulnerable code and fix them.
[todo]
The course supplied a Vulnerability Assessment Process Flow diagram.
References
Apache Maven (2023). Introduction. Last Retrieved on Aug. 16, 2023 from https://maven.apache.org/what-is-maven.html
CS-305 (n.d.). Vulnerability Assessment Process Flow Diagram. Southern New Hampshire University.
Dependency Check (2023). Usage. Retrieved on Aug. 16, 2023 from https://jeremylong.github.io/DependencyCheck/dependency-check-maven/index.html
OWASP Foundation (2010). OWASP Secure Coding Practices Quick Reference Guide. Retrieved on Aug. 16, 2023 from: https://owasp.org/www-pdf-archive/OWASP_SCP_Quick_Reference_Guide_v1.pdf
Secure Coding Guidelines for Java SE (v. 10.0). Last retrieved on Aug. 16, 2023 from: https://www.oracle.com/java/technologies/javase/seccodeguide.html