Module Handbook

  • Dynamischer Default-Fachbereich geändert auf INF

Course INF-00-32-K-3

Web 2.0 Technologies 2 (Services, Security and Privacy) (2V+1U, 4.0 LP)

Course Type

SWS Type Course Form CP (Effort) Presence-Time / Self-Study
- K Lecture with exercise classes (V/U) 4.0 CP 78 h
2 V Lecture 28 h
1 U Exercise class (in small groups) 14 h
(2V+1U) 4.0 CP 42 h 78 h

Basedata

SWS 2V+1U
CP, Effort 4.0 CP = 120 h
Position of the semester 1 Sem. in SuSe
Level [3] Bachelor (Core)
Language [DE] German
Lecturers
Area of study [INF-SI] Socioinformatics
Livecycle-State [NORM] Active

Possible Study achievement

  • Verification of study performance: proof of successful participation in the exercise classes (ungraded)
  • Details of the examination (type, duration, criteria) will be announced at the beginning of the course.

Contents

  • information systems:
    • concepts, relational databases, databases, database management systems
    • tables, attributes, relations, keys, foreign keys, conditions of integrity
    • modeling, ER models, cardinalities
  • SQL:
    • concepts, queries, joins
    • scheme definition, types, data manipulation, transactions, ACID
    • views, prepared statements, stored procedures, trigger
  • PHP:
    • MySQL-API, application scenarios, security, SQL-Injections, persistent injections
  • Web application framework Django:
    • concepts, abstraction, maintainability, security
    • basic features of Python, OR mapper, interactive shell
    • basic features of Django, scheme definition, scheme migration, relations, admin interface
    • querysets, views, processing of requests, templates, inheritance, transactions, URL mapper, regular expressions
    • software management, practical case studies, form processing, middlewares, authentication, authorization
  • Javascript APIs:
    • DOM manipulation, event handling, jQuery, asynchronous communication, AJAX, JSON
  • security, privacy and authentication:
    • attack vectors, defense, injections, escaping
    • MITM, transport encryption TLS, certificates, CA, X509-PKI
    • cookie-stealing, session-stealing, session-fixation
    • cross-site Request Forgeries
    • Data protection and privacy in web services (user tracking, branding, privacy)

Competencies / intended learning achievements

After successfully completing the module, students will be able to
  • design, plan and implement advanced server-side web services
  • design, plan and implement advanced client-side active and interactive applications
  • understand requirements, threats and their countermeasures in the areas of security, availability and privacy for web services
  • understand and classify current and emerging developments (mobile devices, location-based services, ...)

Literature

Materials

  • lecture slides
  • online material

Requirements for attendance (informal)

programming skills

Courses

Requirements for attendance (formal)

None

References to Course [INF-00-32-K-3]

Module Name Context
[INF-00-32-M-3] Web 2.0 Technologies 2 (Services, Security and Privacy) P: Obligatory 2V+1U, 4.0 LP
[INF-00-52-M-3] Advanced Web Technologies P: Obligatory 2V+1U, 4.0 LP
[SO-02-2151-M-6] Wissensmanagement und Technik P: Obligatory 2V+1U, 4.0 LP
[SO-02-215-M-6] Wissensmanagement und Technik WP: Obligation to choose 2V+1U, 4.0 LP
[SO-09-120-M-6] Disziplinenübergreifender Querschnittsbereich WP: Obligation to choose 2V+1U, 4.0 LP
[SO-120000-M-6] Wissenschaftsmanagement und Technik P: Obligatory 2V+1U, 4.0 LP