Authors: Maria Moore, Huiming Yu, Xiaohong Yuan and Bill Chu
Abstract: Software security requirements and design is critical because it removes the flaws in software systems and minimizes the impacts of security vulnerability when it is discovered. In order to effectively teaching knowledge of secure software engineering we have developed a course module titled “Software Security Requirements and Design”. This paper presents the content of this module and reports our teaching experiences. This module has been successfully taught in COMP 510 Software Engineering class in Spring 2011 in the Department of Computer Science at North Carolina A&T State University. Our experience exhibits that teaching this module in junior and senior levels help students not only understand the impacts of unsecure software, but also gain significant knowledge of secure software development practice. Students’ survey and feedback reflected that this module is very valuable in their educational experience. This module could be taught in junior and senior classes of Software Engineering, Computer Science and Information Technology.
Keywords: software engineering education; security requirements; security design