이 강좌에 대하여

최근 조회 11,230
공유 가능한 수료증
완료 시 수료증 획득
100% 온라인
지금 바로 시작해 나만의 일정에 따라 학습을 진행하세요.
다음 특화 과정의 4개 강좌 중 3번째 강좌:
유동적 마감일
일정에 따라 마감일을 재설정합니다.
중급 단계
완료하는 데 약 22시간 필요
영어
자막: 영어

배울 내용

  • Apply “what to watch out for” and “where to look” to evaluate fragility of C++ library code.

  • Given a fragile C++ library, code a robust version.

  • Identify problems w/ privilege, trusted environments, input validation, files & sub-processes, resource mngmt, asynchronicity, & randomness in C/C++.

  • Remediate examples of problems that apply to C/C++ interactions with the programming environment.

귀하가 습득할 기술

Identifying vulernabilitiesC/C++ Programming
공유 가능한 수료증
완료 시 수료증 획득
100% 온라인
지금 바로 시작해 나만의 일정에 따라 학습을 진행하세요.
다음 특화 과정의 4개 강좌 중 3번째 강좌:
유동적 마감일
일정에 따라 마감일을 재설정합니다.
중급 단계
완료하는 데 약 22시간 필요
영어
자막: 영어

제공자:

캘리포니아 대학교 데이비스 캠퍼스 로고

캘리포니아 대학교 데이비스 캠퍼스

강의 계획 - 이 강좌에서 배울 내용

1

1

완료하는 데 6시간 필요

Users, Privileges, and Environment Variables

완료하는 데 6시간 필요
17개 동영상 (총 107분), 4 개의 읽기 자료, 2 개의 테스트
17개의 동영상
Module 1 Introduction2m
Users and Privileges Overview7m
Identifying Users and Changing Privileges7m
Spawning Subprocesses8m
Identifying Users Incorrectly1m
Establishing Users and Setting UIDs8m
Establishing Groups and GIDs3m
Establishing Privileges for Users and Groups11m
How Root Privileges Work3m
Lesson 1 Summary1m
Environment Variables Overview2m
Programming Explicitly4m
Addressing Various Attacks16m
Dynamic Loading and Associated Attacks16m
Programming Implicitly3m
The Moral of the Story5m
4개의 읽기 자료
A Note From UC Davis10m
Who Are You? - What is Going On?10m
Resetting the PATH - What is Going On?10m
Multiple PATH Environment Variables - What's Going On?5m
2개 연습문제
Module 1 Practice Quiz14m
Module 1 Quiz30m
2

2

완료하는 데 6시간 필요

Validation and Verification, Buffer and Numeric Overflows, and Input Injections

완료하는 데 6시간 필요
17개 동영상 (총 162분), 2 개의 읽기 자료, 2 개의 테스트
17개의 동영상
Validation and Verification Overview8m
Metacharacters11m
The Heartbleed Bug and Other Exploits21m
Inputs15m
Fixes6m
Lesson 3 Summary1m
Buffer Overflows Overview2m
Buffer Overflow Examples18m
Selective Buffer Overflow and Utilizing Canaries17m
Numeric Overflows Overview7m
Numeric Overflow Examples8m
Lesson 4 Summary2m
Input Injections Overview1m
Cross-Site Scripting Attacks18m
SQL Injections10m
Lesson 5 Summary5m
2개의 읽기 자료
Path Names - What's Going On?10m
Numeric and Buffer Overflows - What's Going On?10m
2개 연습문제
Module 2 Practice Quiz15m
Module 2 Quiz30m
3

3

완료하는 데 3시간 필요

Files, Subprocesses, and Race Conditions

완료하는 데 3시간 필요
13개 동영상 (총 80분), 1 개의 읽기 자료, 2 개의 테스트
13개의 동영상
Files and Subprocesses Overview52
Creating a Child Process5m
Subprocess Environment10m
Files and Subprocesses Design Tips5m
Lesson 6 Summary2m
Race Conditions Overview8m
A Classic Race Condition Example9m
Time of Check to Time of Use12m
Programming Condition5m
Environmental Condition7m
Race Conditions6m
Linux Locks and FreeBSD System Calls4m
1개의 읽기 자료
The Environmental Condition - What's Going On?10m
2개 연습문제
Module 3 Practice Quiz15m
Module 3 Quiz30m
4

4

완료하는 데 7시간 필요

Randomness, Cryptography, and Other Topics

완료하는 데 7시간 필요
19개 동영상 (총 97분), 4 개의 읽기 자료, 2 개의 테스트
19개의 동영상
Randomness and Cryptography Overview2m
Pseudorandom vs. Random6m
Producing Random Numbers4m
Sowing Seeds12m
Cryptography Basics3m
Using Cryptography for Secrecy and Integrity8m
Some Cryptography Examples9m
Lesson 8 Summary1m
Handling Sensitive Information and Errors and Formatting Strings Overview1m
All About Passwords7m
Adding a Pinch of Salt4m
Managing Sensitive Data4m
Practice a Secure Function8m
Error Handling Part 14m
Error Handling Part 26m
Format Strings5m
Lesson 9 Summary2m
Course Summary52
4개의 읽기 자료
(Pseudo) Random Numbers - What's Going On?10m
Hashing and Cracking Passwords - What's Going On?10m
A Safe system() Function - What's Going On?10m
Converting Strings to Integers - What's Going On?10m
2개 연습문제
Module 4 Practice Quiz15m
Module 4 Quiz30m

검토

IDENTIFYING SECURITY VULNERABILITIES IN C/C++PROGRAMMING의 최상위 리뷰

모든 리뷰 보기

Secure Coding Practices 특화 과정 정보

This Specialization is intended for software developers of any level who are not yet fluent with secure coding and programming techniques.Through four courses, you will cover the principles of secure coding, concepts of threat modeling and cryptography and exploit vulnerabilities in both C/C++ and Java languages, which will prepare you to think like a hacker and protect your organizations information. The courses provide ample practice activities including exploiting WebGoat, an OWASP project designed to teach penetration testing....
Secure Coding Practices

자주 묻는 질문

  • Access to lectures and assignments depends on your type of enrollment. If you take a course in audit mode, you will be able to see most course materials for free. To access graded assignments and to earn a Certificate, you will need to purchase the Certificate experience, during or after your audit. If you don't see the audit option:

    • The course may not offer an audit option. You can try a Free Trial instead, or apply for Financial Aid.

    • The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

  • When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile. If you only want to read and view the course content, you can audit the course for free.

  • If you subscribed, you get a 7-day free trial during which you can cancel at no penalty. After that, we don’t give refunds, but you can cancel your subscription at any time. See our full refund policy.

  • Yes, Coursera provides financial aid to learners who cannot afford the fee. Apply for it by clicking on the Financial Aid link beneath the "Enroll" button on the left. You'll be prompted to complete an application and will be notified if you are approved. You'll need to complete this step for each course in the Specialization, including the Capstone Project. Learn more.

궁금한 점이 더 있으신가요? 학습자 도움말 센터를 방문해 보세요.