Security training developed by senior IBM software engineers is available free of charge. Part of three software quality assurance courses offered by the Arizona Information Skills Training Initiative, the language-agnostic modules address various aspects of security throughout the software development life cycle. Anyone can enroll in the courses, and IBM certification is available at no cost.
Creating Secure Software Module (Engineering Quality in Software Development Course, Module 6)
The purpose of this module is to teach you about security issues to consider when designing software. You will learn about the key issues of the design phase of the security engineering lifecycle, attacks that have occurred due to errors or omissions in the design phase, and alternatives to passwords to consider if secure authentication is important for your application. In addition, to design secure software, you must understand the approaches hackers use to attack a system. The better you understand how hackers think, the more secure you can make your software. Therefore, this module covers a variety of common attacks. The programming examples in this module are general enough that you can apply the paradigms to any environment, regardless of the language in which they are written.
Security Requirements and Design (Software Quality Course, Module 8, Effective Practices for Requirements and Design, Lesson 4)
You will be introduced to standards your team can use to identify security requirements and to assess the security of the design.
Security Requirements and Misuse Cases (Software Testing Course, Module 4)
Learn about security and three categories of attacks. You'll learn how to approach evaluating security requirements. Examples of misuse cases that you can use to create test cases are included.
