csce548-lect15

csce548-lect15 - CSCE 548 Secure Software Development...

Info iconThis preview shows pages 1–6. Sign up to view the full content.

View Full Document Right Arrow Icon
CSCE 548 CSCE 548 Secure Software Secure Software Development Development Taxonomy of Coding Errors Taxonomy of Coding Errors
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
CSCE 548 - Farkas 2 Reading Reading This lecture: McGraw: Chapter 12 Recommended: SANS: The Top Cyber Security Risks, http://www.sans.org/top-cyber-security-risks/ Weber, Karger, Paradkar, A software flaw taxonomy: aiming tools at security, ACM SIGSOFT Software Engineering Notes Volume 30 , Issue 4 ,July 2005, Next lecture: Howard et al.: Buffer Overruns
Background image of page 2
Application Vulnerabilities Application Vulnerabilities # application vulnerabilities >> # OS vulnerabilities Most "popular" applications – change over time prevalence inability to effectively patch Current targets: browsers and client-side applications CSCE 548 - Farkas 3
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Web Application Attacks Web Application Attacks Brute force password guessing attacks Web application attacks Popular targets for pswd guessing: Microsoft SQL, FTP, and SSH servers Popular targets for application attacks: SQL Injection, Cross-site Scripting and PHP File Include attacks CSCE 548 - Farkas 4
Background image of page 4
Application Patching Application Patching
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 6
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 20

csce548-lect15 - CSCE 548 Secure Software Development...

This preview shows document pages 1 - 6. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online