Introduction to security in software engineering and software projects: Why do security vulnerabilities appear in software? How can a software development project perform security assurance? Architectural security risk analysis and security-enhancing design patterns. Software security in the infrastructure of the society. The course takes a pragmatic view of security with a real-life software industry background. Weekly exercises include technical testing and design exercises as well as writing essays. Recommended (not compulsory) course book: M. G. Graff & K. R. van Wyk: Secure Coding: Principles and Practices, O"Reilly Media, 2003. Further reading recommendation: G. McGraw: Software Security: Building security in, Addison-Wesley, 2006. This course cannot be taken as a separate exam. (Grading based on weekly tasks.)