This semester, I'm offering a course on "secure software development". The course is divided into three parts:
Do you know of any courses (especially, those offered at universities) with similar content, that you advise me to look at? I don't want my students to feel that only Windows suffers from security issues; so both generic courses and courses specific to 'NIX-based OS's are appreciated.
For Reverse Engineering: The University of Helsinki in collaboration with F-Secure offer a course titled Malware Analysis and Antivirus Technologies which has the curriculum available online.
For Secure Coding: CERT is always a good reference, especially for C & C++. They have a Secure Coding in C and C++ course at SEI @ CMU.
I haven't taken the course, but I've heard a lot of good things about the OCSP certification:
http://www.offensive-security.com/information-security-certifications/
A few years ago, I helped set up (via the local branch there of my then-company) a similar course at the University of Amsterdam... but I really don't have any current details, though you should be able to look that up.
The IDC in Israel has a very good program for infosec - http://portal.idc.ac.il/en/schools/cs/progs/ugrad/Pages/securityintheNetEra.aspx. They produce a lot of good research, and are very connected with OWASP.
I find this awesome - http://pentest.cryptocity.net/. This is course done by many well-known security researchers. There is no point in discussing, just check out.
SANS offer some courses relating to your areas that I have heard good things about. I suggest them because they have a good break down of the topics they cover that might give you some good ideas.
Secure Coding in Java/JEE: Developing Defensible Applications
Reverse-Engineering Malware: Malware Analysis Tools and Techniques
The University of Pisa offered a course on "Secure Software Development" a year ago.
You can download all the lectures and resources from the official page (it's in Italian, so maybe you'll need Google Translate).
Have you taken a look at MIT's OpenCourseWare? After a quick search I found a course on Network and Computer Security and Computer Systems Architecture (might be useful for the Reverse Engineering part).
You can also try http://academicearth.org/lectures/search/security/ and http://videolectures.net/site/search/?q=security.
Stanford University offers an online set of short courses in software security, leading to a Certificate in Advanced Computer Security. The program includes an introductory course on secure software development, and short courses in secure protocols and cryptography, web security, and so on.
Full disclosure: I work for Varonis.
Troy Hunt put together a (free) video course for Varonis on web security which covers things like SQL injection, XSS, Transport Layer Security and more.
Even though the content was sponsored by Varonis, it's completely vendor agnostic.
You can view all 7 video lessons here: http://info.varonis.com/web-security-fundamentals-course
It's a great way to get the fundamentals down before moving onto something more in-depth.
Hunt also has a bunch of PluralSight courses on ethical hacking, Azure security, and more. He's an excellent teacher.
The Aspect Security courses appear to have the best content. I don't think too many university programs can match what they have done, but the http://pentest.cryptocity.net one mentioned by Ams in these comments is definitely better than most.
Special Course in Communications Security (Malware Analysis and Antivirus Technologies)
The course teaches students what malicious code is and how it can be detected and analyzed. Topics of the course include malware taxonomy, reverse engineering, code emulation fundamentals, basic cryptoanalysis of malicious crypto, and antivirus engine basics. Course includes a homework project that requires programming skills.
I am trying to define a syllabus for "Secure Programming" course. In my search, I found the course outline provided by Cyber Defense Institute so complete and useful. See the following link http://www.cyberdefenseinstitute.net/courses/secureprogramming/secureprogramming.html#attachment. Just finding some good textbooks for preparing the content of such a course makes it a good complete reference for secure coding part of your course and other similar courses.
Langara College offers, or at least they did offer, a security course:
CPSC 2810 (3 credits) (4:0:2) Computer and Information Security
An introduction to the policies, mechanisms, and implementations of computer security. Provides an understanding of threats, including script kiddies; covert channels; and malicious logic such as viruses, worms, time bombs, and trap doors. Students will learn how attacks work, how to defend against attacks, and how to design and administer secure systems and networks.
Prerequisite(s): A minimum "C" grade in one of: CPSC 1280 or 1480; or permission of the department.
