IIKG2001 - Software Security


Examination arrangement

Examination arrangement: School exam
Grade: Letter grades

Evaluation Weighting Duration Grade deviation Examination aids
School exam 100/100 2 hours E

Course content

  • Secure software development lifecycle
  • Low level and application related vulnerability analysis
  • Security requirement and secure design
  • Secure coding practices
  • Basic Security testing

Learning outcome


  • The students have basic knowledge on how software can be created and maintained with security in mind, i.e. deviation from expected functionality owing to interaction with an adversary.
  • They understand attack patterns, e.g. format string problems, command injection.
  • The students have an overview of existing techniques, classes of tools and the methods used in software development today.


  • Students can apply their knowledge to problem cases in an industrial or research setting.
  • They are able to identify potential threats and vulnerabilities early in a program's lifecycle and apply measures that prevent or reduce vulnerabilities in software.

General competence

  • The students succeed in presenting their analyses and approaches to other developers, superiors and customers.

Learning methods and activities

  • Lectures
  • Laboratory exercises
  • Compulsory assignments
  • Home reading
  • Group work (encouraged, not mandatory)
  • Sustainability Lab
  • Quiz

Coursework requirements: All obligatory exercises must be approved.

Compulsory assignments

  • Compulsory assignments

Further on evaluation

Re-sit examination in August concerns only the written exam.

Obligatory assignments have to be passed, to allow sitting in the final written exam.

Course materials

Paul, M. (2013). Official (ISC) 2 Guide to the CSSLP. CRC Press.

More on the course



Version: 1
Credits:  7.5 SP
Study level: Third-year courses, level III


Term no.: 1
Teaching semester:  AUTUMN 2023

Language of instruction: English

Location: Gjøvik

Subject area(s)
  • Computer Science
Contact information
Course coordinator: Lecturer(s):

Department with academic responsibility
Department of Information Security and Communication Technology


Examination arrangement: School exam

Term Status code Evaluation Weighting Examination aids Date Time Examination system Room *
Autumn ORD School exam 100/100 E 2023-12-05 09:00 INSPERA
Room Building Number of candidates
M438 Eksamensrom 4.etg, Inngang D Mustad, Inngang D 70
M414-Eksamensrom 4.etg Mustad, Inngang A 2
M433-Eksamensrom 4.etg Mustad, Inngang A 30
Summer UTS School exam 100/100 E INSPERA
Room Building Number of candidates
  • * The location (room) for a written examination is published 3 days before examination date. If more than one room is listed, you will find your room at Studentweb.

For more information regarding registration for examination and examination procedures, see "Innsida - Exams"

More on examinations at NTNU