Effective Web and Java security education with the SWEET course modules/resources

Abstract

We have developed a complete set of open-source tutorials and hands-on lab exercises, called Secure WEb dEvelopment Teaching (SWEET), to introduce security concepts and practices for web and Java application development. SWEET provides introductory tutorials, teaching modules utilizing virtualized hands-on exercises, and project ideas in web and Java application security. In addition, SWEET provides pre-configured virtual computer for laboratory exercises. This paper describes the SWEET design and resources in general and its Java security module in particular. SWEET has been integrated into computing courses at multiple universities and it has supported innovative student projects like a secure web-based online trader simulator. © 2012 Springer-Verlag GmbH Berlin Heidelberg.