course-details-portlet

TDT4237

Software Security and Data Privacy

Choose study year
Credits 7.5
Level Second degree level
Course start Spring 2025
Duration 1 semester
Language of instruction English
Location Trondheim
Examination arrangement School exam

About

About the course

Course content

The course will go through all the phases in the secure software development lifecycle (requirements, design, implementation, and testing) focusing on how to incorporate security in each phase and what techniques to use. The main focus is on web-based applications. The course will also cover basic knowledge related to data privacy, such as GDPR.

Learning outcome

After having taken this course, students should be able to: 1) Identify and fix typical security vulnerabilities of web applications. 2) Explain typical cryptography concepts and algorithms that are related to web application; 3) Apply the threat modeling methods to analyze web application; 4) Describe and compare software engineering practices and standards related to software security; 5) Apply risk-based testing for development; 6) Explain key authentication and access control concepts and methods; 7) Explain and apply principles of GDPR and data privacy; 8) Critical evaluation and application of AI-assisted software security tools.

Learning methods and activities

Lectures and mandatory exercises.

Compulsory assignments

  • Exercises

Further on evaluation

Exercises must be approved to be eligible for the exam.

The text for the written final exam will be in English.

The candidates may choose to write their answers in either English or Norwegian.

If there is a re-sit examination, the examination form may change from written to oral.

Course materials

To be announced at the beginning of the semester.

Credit reductions

Course code Reduction From
IIKG3000 2.5 sp Autumn 2021
This course has academic overlap with the course in the table above. If you take overlapping courses, you will receive a credit reduction in the course where you have the lowest grade. If the grades are the same, the reduction will be applied to the course completed most recently.

Subject areas

  • Computer and Information Science
  • Communication and Information Science

Contact information

Course coordinator

Lecturers

Department with academic responsibility

Department of Computer Science

Examination

Examination

Examination arrangement: School exam
Grade: Letter grades

Ordinary examination - Spring 2025

School exam
Weighting 100/100 Examination aids Code E Date 2025-06-05 Time 15:00 Duration 4 hours Exam system Inspera Assessment
Place and room for school exam

The specified room can be changed and the final location will be ready no later than 3 days before the exam. You can find your room location on Studentweb.

Sluppenvegen 14
Room SL311 lyseblå sone
96 candidates
Room SL311 orange sone
65 candidates
Room SL311 grønn sone
68 candidates
Room SL310 hvit sone
17 candidates
Room SL311 brun sone
82 candidates

Re-sit examination - Summer 2025

School exam
Weighting 100/100 Examination aids Code E Duration 4 hours Exam system Inspera Assessment
Place and room
The specified room can be changed and the final location will be ready no later than 3 days before the exam. You can find your room location on Studentweb.