The University of Southampton
Courses

COMP6236 Software Security

Module Overview

This module focuses on both theoretical and practical perspectives in the security of software and software systems, by exploring software analysis and reverse engineering. 
The aims of the module at a high level are to: 
- Explore common threats to the secure operation of software systems 
- Give students exposure to software system analysis and penetration of software systems - Provide practical skills in malware analysis and reverse engineering

Aims and Objectives

Module Aims

To explore aspects of software and software systems that are directly applicable to cyber security

Learning Outcomes

Knowledge and Understanding

Having successfully completed this module, you will be able to demonstrate knowledge and understanding of:

  • Common issues affecting the security of software systems
  • Software analysis
  • Reverse Engineering of Software
Subject Specific Intellectual and Research Skills

Having successfully completed this module you will be able to:

  • Describe specific methods for exploiting software systems
Transferable and Generic Skills

Having successfully completed this module you will be able to:

  • Recognise software vulnerabilities and protection in a range of application domains
Subject Specific Practical Skills

Having successfully completed this module you will be able to:

  • Identify security weaknesses in software systems and applications
  • Undertake basic reverse engineering of software

Syllabus

The syllabus includes the following topics:
 - Understanding software threats and hazards, types of attack and attacker - Software Vulnerabilities (memory violation, input validation, privilege escalation) - OS vulnerabilities: patch management, rootkits and viruses - Penetration testing of software systems - Malware analysis - Static/dynamic analysis of software systems - Reverse engineering of suspicious code

Learning and Teaching

Teaching and learning methods

The module will be delivered through up to 36 lectures, which will include at least two regular lectures each week, in addition to tutorial and practical sessions. The tutorial and practical sessions are designed to support students and prepare them to take the assignment.

TypeHours
Completion of assessment task46
Teaching36
Follow-up work18
Wider reading or practice22
Revision10
Preparation for scheduled sessions18
Total study time150

Resources & Reading list

Dieter Gollman (2011). Computer Security. 

Eldad Eilam (2005). Reversing: Secrets of Reverse Engineering. 

Assessment

Summative

MethodPercentage contribution
Coursework 25%
Coursework 25%
Coursework 25%
Coursework 25%

Referral

MethodPercentage contribution
Coursework 100%

Repeat Information

Repeat type: Internal & External

Share this module Share this on Facebook Share this on Google+ Share this on Twitter Share this on Weibo

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×