Skip to main content
The following fields are required:
Error has occurred. Please reload this page and try the operation again.
  • Agents
  • Student Login
  • Instructor Login
Extension
      • Areas of Study
        • Art and Design
        • Behavioral Health Sciences
        • Business
          • Accounting
          • Business Administration
          • Economics
          • Finance
          • Leadership and Management
          • Marketing
          • Project Management
          • See the full list
        • Construction and Sustainability
        • Education
        • Humanities and Languages
        • Mathematics and Statistics
        • Sciences and Biotechnology
          • Biology
          • Chemistry and Physics
          • Clinical Laboratory Science
          • Health Advising
          • Life Science Business and Biotechnology
          • Online Sciences Courses
          • See the full list
        • Technology and
          Information Management
        • Writing, Editing and
          Technical Communication
      • Transfer Credit
        • Transfer Credit Courses
      • Online Learning
        • Online Courses and Certificates
      • Events
        • Information Sessions
      • Academic Services
        • Enrollment
        • Transcripts
        • General Information
        • Community Guidelines
        • Locations
      • Course and Program Information
        • Latest COVID-19 Information
        • Online Course Policies
        • Certificates, Programs and CEUs
        • Concurrent Enrollment
        • International Student Services
      • Student Aid
        • Disability Support Services
        • Financial Assistance
      • Voices
        • Voices Home
        • Educator Insights
        • Student Stories
        • Professional Pathways
        • Industry Trends
      • Events
        • Information Sessions
        • Free and Low Cost Events
  • Berkeley Global

Web Software Security Frameworks

COMPSCI X437

94128166
Explore a broad range of essential topics in web software security frameworks, combining theoretical knowledge with practical activities to develop a comprehensive understanding of web application security. Learn contemporary and fundamental security practices, methods and techniques as they pertain to web-software security. This includes the use of AI-enhanced monitoring tools. Design, build, implement and test web-software across a variety of systems and environments. Current topics include secure coding practices, authentication and authorization, cryptography and application firewalls. You will also study secure API development, security testing and vulnerability assessments for software systems, incident response and monitoring as well as secure deployment of software applications through DevOps paradigms.

Prerequisites: Students should have completed coursework or have practical experience in front and back end development before starting this course.

Learner Outcomes

Upon completion of this course, students will be able to:

  1. Explain the fundamental principles of web security, identify common threats and vulnerabilities (such as those listed in the OWASP Top Ten), and articulate the importance of security in web development.
  2. Apply secure coding guidelines and best practices, including input validation, output encoding, and error handling, to develop secure web applications.
  3. Implement and configure robust authentication and authorization mechanisms, such as passwords, multi-factor authentication, role-based access control, and secure session management, in web applications.
  4. Use cryptographic libraries to implement encryption and decryption, understand basic cryptographic concepts (e.g., encryption, hashing), and set up secure communication protocols such as HTTPS and TLS.
  5. Deploy and configure web application firewalls, create custom WAF rules, and understand WAF policies to protect web applications from threats.
  6. Identify and address security considerations for RESTful and GraphQL APIs, implement API authentication and authorization (e.g., OAuth2, JWT), and enforce rate limiting and input validation.
  7. Perform security testing using automated tools (e.g., OWASP ZAP, Burp Suite) and manual techniques, and write and present vulnerability assessment reports.
  8. Develop incident response plans, configure monitoring and logging for security purposes, and utilize SIEM tools to detect and respond to security incidents.
  9. Research and present on emerging security threats, new security technologies, and future directions in web application security.
Loading...

Sections

Spring 2025 enrollment opens on October 21!

Thank you for your interest in this course!

The course you have selected is currently not open for enrollment.

Enter your email below to be notified when it becomes available.

Required Field

We're excited that you have chosen us as your education provider.

Once a section for this class is available, we will email you with enrollment information.

Your privacy is important to us.

Email Privacy Policy

Your privacy is important to us!

We do not share your information with other organizations for commercial purposes.

We only collect your information if you have subscribed online to receive emails from us.

We do not partner with or have special relationships with any ad server companies.

If you want to unsubscribe, there is a link to do so at the bottom of every email.

Read the full Privacy Policy

← Back to your information.

This course applies to the following programs:

Advanced Program in Software Development

Expand or collapse section

Programming

  • Java: Discovering Its Power
  • Mastering Python

Back-End Development

  • Back-End Development with Java/Python

Security

  • Web Software Security Frameworks

Electives

  • Software Quality Assurance
  • Software Design Patterns
  • Artificial Intelligence Foundations
  • Advanced Databases

Capstone

  • Advanced Software Development Capstone

Learn More About this Program

Instructional Types

Live Online
Live Online courses provide an interactive learning experience with scheduled synchronous online sessions held via Zoom video conferencing (Pacific Time). Learn more about the Live Online format.
Online, Start Anytime
Continuous enrollment course begins when you enroll. You have a minimum of 90 days and a maximum of 180 days to complete the course.
Online, Fixed Date
Enroll in this course by its start date and complete it by its specified end date. There are no live sessions, but plenty of opportunities to collaborate with your classmates and instructor.
Classroom
Take classes in-person at one of our buildings or partner locations.

English Language Proficiency Requirements

All of our courses are taught in English. If English is not your first language, please use the following test scores as guides in order to be successful:

  • TOEFL: 90
  • IELTS Academic Format: 7
  • DAAD: C1
  • TEM-4 or TEM-8: Level 70
  • Duolingo: 125

Note: You do not need to submit test scores.

Extension

1995 University Ave., Suite 130

Berkeley, CA 94704-7000

extension@berkeley.edu

Facebook Facebook Icon Twitter Twitter Icon LinkedIn LinkedIn Icon YouTube YouTube Icon Instagram Instagram Icon Medium Small Icon for Medium
WeChat QR code

Locations

  • Berkeley
  • San Francisco
  • Online
  • Other

Resources

  • About Us
  • Administration
  • Accessibility
  • Nondiscrimination
  • Privacy
  • Transcripts
  • Gifts
  • Jobs
  • Contact Us
Western Association of Schools and Colleges

The University of California, Berkeley, is accredited by the Western Association of Schools and Colleges (WASC). UC Berkeley Extension—like all other UC Berkeley schools, colleges and departments—is accredited by WASC through the University.

Copyright © UC Regents

Powered by Modern Campus

Cookie Policy

By clicking “Accept All Cookies,” I agree to permit this website to share my information, including a device identifier and my browsing history on this site, with selected partners, including Google, Meta/Facebook and others, to enhance my browsing experience and to ensure that marketing communications are targeted to my needs in accordance with our Cookie Policy and our Privacy Policy.

Session Time-Out

For security reasons and the protection of your personal information, your session will time out due to a period of inactivity in minute(s) and second(s). Click Extend My Session to continue. For security reasons and the protection of your personal information, your session timed out after a period of inactivity. You will be redirected to the home page.

Confirm

Alert

Processing...

Privacy Policy

Cookie Policy

This statement explains how we use cookies on our website. For information about what types of personal information will be gathered when you visit the website, and how this information will be used, please see our Privacy Policy.

How we use cookies

All of our web pages use "cookies". A cookie is a small file of letters and numbers that we place on your computer or mobile device if you agree. These cookies allow us to distinguish you from other users of our website, which helps us to provide you with a good experience when you browse our website and enables us to improve our website.

We use cookies and other technologies to optimize your website experience and to deliver communications and marketing activities that are targeted to your specific needs. Some information we collect may be shared with selected partners such as Google, Meta/Facebook or others. By browsing this site you are agreeing to our Privacy Policy. You can revoke your voluntary consent to participate in monitored browsing and targeted marketing by selecting “Disable All Cookies” below.

Types of cookies we use

We use the following types of cookies:

  • Strictly necessary cookies- these are essential in to enable you to move around the websites and use their features. Without these cookies the services you have asked for, such as signing in to your account, cannot be provided.
  • Performance cookies- these cookies collect information about how visitors use a website, for instance which pages visitors go to most often. We use this information to improve our websites and to aid us in investigating problems raised by visitors. These cookies do not collect information that identifies a visitor.
  • Functionality cookies- these cookies allow the website to remember choices you make and provide more personal features. For instance, a functional cookie can be used to remember the items that you have placed in your shopping cart. The information these cookies collect may be anonymized and they cannot track your browsing activity on other websites.

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them please visit https://www.allaboutcookies.org/.

Specific cookies we use

The list below identify the cookies we use and explain the purposes for which they are used. We may update the information contained in this section from time to time.

  • JSESSIONID: This cookie is used by the application server to identify a unique user's session.
  • registrarToken: This cookie is used to remember items that you have added to your shopping cart
  • locale: This cookie is used to remember your locale and language settings.
  • cookieconsent_status: This cookie is used to remember if you've already dismissed the cookie consent notice.
  • _ga_UA-########: These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website, where visitors have come to the site from and the pages they visited. This anonymized visitor and browsing information is stored in Google Analytics.

Changes to our Cookie Statement

Any changes we may make to our Cookie Policy in the future will be posted on this page.