Virtual Open-Source Labs for Web Security Education
暂无分享,去创建一个
Web security education depends heavily on hands-on labs that guide the students in developing web applications, evaluating the effectiveness of available security mechanisms, and detecting the security flaws of existing web applications. Since a typical web application runs on multiple servers including web servers, application servers and database servers, it has been a great challenge in supporting them in university laboratories. This paper introduces some of our virtual web security labs developed as part of our NSF SWEET (Secure WEb dEvelopment Teaching) and Department of Defense Information Assurance Scholarship projects. All of these labs are developed on our open-source Ubuntu virtual machines, and all servers and applications are open-source thus are freely available. Course modules have been developed to use these open-source virtual labs to study cryptography, HTTP and HTTPS protocols, and introduction to Java web technologies. All of these resources are freely available to the public.
[1] Li-Chiou Chen. Secure Web Development Teaching Modules , 2010, AMCIS.
[2] Johannes A. Buchmann,et al. Introduction to Cryptography , 2001 .
[3] Christof Paar,et al. Introduction to Cryptography and Data Security , 2010 .
[4] ともやん,et al. Microsoft Virtual PC , 2009 .
[5] 淮河水手. 系统播放器 VMware Player , 2006 .