Software and Web applications security: state-of-the-art courseware and learning paradigm

University graduates with strong technical hands-on skills to develop highly secure software and Web systems are in high demand in industry. This paper is focused on designed and developed state-of-the-art courseware and appropriate learning paradigm in software and Web applications security for computer science and computer information systems students. The main topics of developed curriculum include motivation of attackers, modern treats and vulnerabilities in software and Web systems, categories of computer attacks, types of computer attacks, hacker tools, protection and defense mechanisms, secure programming styles for software and Web systems´ development. Based on student feedback and student academic performance, a combination of learning-by-doing paradigm of education with multiple hands-on exercises, computer lab sessions and projects proved to be very efficient and provided students with strong technical hands-on skills in software and Web applications security.