COEN 351 Spring 2009
In order to avoid duplication of contents, COEN 351 will be a practical course, whereas COEN 350 (Network Security) will explore theoretical issues deeper. Both courses together should leave the student with good theoretical and practical knowledge to implement a secure e-commerce site. In order to be self-contained, COEN 351 and COEN 350 will share some Nevertheless, COEN 351 will be essentially self-contained, merely assuming that students have acquired some maturity as a programmer. If a student does not know PERL or PHP, they will learn a smattering of it. Students with practical experience are encouraged to develop a project on their own.
Students are invited to collaborate heavily on the practical part and to test each others systems. However, the homeworks and of course the final should be individual with the exception of more practical homework problems, were collaboration is encouraged and allowed, but needs to be indicated on the hand-in.
|E-Commerce Overview||Session 1|
|E-Commerce Legal Issues||
|Internet Security Protocols||
|Legal Issues Revisited||
|Web-Based Security Threats||
|Installing Perl and Apache||
|Perl and CGI Basics||Calling CGI scripts. HTML, HTTP basics||Session 2|
|PHP Scripting Introduction||Loops, functions, types, arrays, strings||Session 2|
|Perl and CGI Basics||Forms and Input||Session 3|
|PHP 5||Object Oriented Design||Session 3|
|SQL and MySQL||Database and query basics||Session 3|
|Perl and CGI Basics||CGI.PM module||Session 4-7|
|PEAR, Validation in PHP, PHP Sessions||Session 5|
|CGI security||Session 8|
|Cookies and Session State||Session 9|
To request academic accommodations for a disability, students must contact Disabilities Resources located on the second floor of Benson. Phone numbers are (408) 554-4111; TTY (408)554-5445. Students must register and provide documentation of a disability to Disabilities Resources prior to receiving academic accommodations.
Warwick Ford, Michael S. Baum: Secure Electronic Commerce, 2nd Edition, Prentice Hall (PTR), 2001.
This is a book that is showing its age, but it is the only good introduction to some of the legal issues that we need to cover.
Gunther Birznieks, Scott Guelich, Shishir Gundavaram: CGI Programming with Perl (Paperback). O'Reilly, 2nd Edition
or one of the many good PHP books from O'Reilly. (I have at least four.)
A CGI book
Either a Java security book or a .Net cryptography book
Books on a scripting language such as Perl, PHP, ...
Dynamic weblanguage such as ASP.
Stuart McClure, Saumil Shah, Shreeraj Shah: Web Hacking, Addison Wesley, 2003.
|©2009 Thomas Schwarz, S.J., COEN, SCU||SCU||COEN||COEN351||T. Schwarz||These documents are not intended for dissemination beyond SCU. CAVEAT LECTOR|