The software security course aims to present some of the main problems in software security, the existing solutions and the open challenges. In particular, the course treats problems related to the protection of the intellectual property of programs and also problems related to the protection of personal/sensitive information in a system.
At the end of the course, the student will have to show to understand the different security issues that raise when developing software or when projecting a system. Moreover, the student should be able to discuss the security solutions used to protect the intellectual property of a software or the security of a system and to suggest potential improvements.
The course will treat the followings:
Computer Security
-- Secure Systems
-- Access Control
-- Non-interference & information flow
-- Intrusion detection, execution monitors, safety properties
-- Software security e vulnerabilities
Software Protection
-- Obfuscation Techniques
-- Watermarking Techniques
-- Tamper-proofing Techniques
Similarity Analysis
| Author | Title | Publisher | Year | ISBN | Note |
| Christian Collberg, Javis Nagra | Surreptitious Software (Edizione 1) | Addison-Wesley Professional | 2009 | 978-0-321-54925-9 |
Project on software security and/or software protection. The project can be assigned to groups of at most 3 people. During the course the teacher will present possible topics for projects. The topic of the project can also be suggested by the students to the teacher.
The results of the project will be organized in a written relation and then presented orally to the teacher. During the oral presentation of the project the teacher may ask questions on the whole program of the course.
After the oral exam the teacher will read the relation and propose an evaluation.
Each individual or group exam has to be scheduled by appointment with the teacher.
