Security is crucial to the software that we develop and use. With the incredible growth of software in every phase of our lives, security is becoming even more critical.
Securing your network is not enough. Every service that you deploy is a window into your data center from the outside world, and a window that could be exploited by an attacker.
This tutorial is relevant to anyone wanting to learn about minimizing security flaws in the software they develop or manage. The presenters will share their experiences gained from performing vulnerability assessments of critical software. You will learn skills essential for software developers and analysts concerned with security.
You will first learn to think like an attacker, then learn about several different coding practices that can introduce vulnerabilities into your code, and then learn how to avoid those vulnerabilities. For most of these vulnerabilities, you will get practical experience throughout our hands-on exercises.
Then you will learn about software assurance tools – tools that scan the source or binary code of a program to find weaknesses. These tools are the first line of defense in assessing the security of a software project. They can catch flaws in a program that affect both the correctness and safety of the code.
You will also learn about dependency analysis tools – tools that find weaknesses in the software supply chain These tools can know flaws in the packages and libraries on which your program depends, and which might affect the safety of the programInstructors:
Prof. Barton P. Miller, University of Wisconsin-Madison
Prof. Elisa Heymann, University of Wisconsin-Madison
* Closing Date: 10th April 2023 @ 17:00