The Secure Java Coding training course covers the best practices for designing, implementing, and deploying secure programs in Java. You will take an application from requirements through to implementation, analyzing and testing for software vulnerabilities. This course explores well beyond basic programming skills, teaching developers sound processes and practices to apply to the entire software development lifecycle. Perhaps just as significantly, you will learn about current, real examples that illustrate the potential consequences of not following these best practices.
By attending Secure Java Coding workshop, delegates will learn:
- Concepts and terminology behind defensive coding
- Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against assets
- Entire spectrum of threats and attacks that take place against software applications
- Threat Modeling to identify potential vulnerabilities in a real life case study
- Static code reviews and dynamic application testing for uncovering vulnerabilities in Java applications
- Vulnerabilities of the Java programming language and the JVM, and how to harden both
- Work with Java 2 platform security to gain an appreciation for what is protected and how
- Roles that Java Authentication and Authorization Service (JAAS) have in Java applications
- Use JAAS in conjunction with a Java application for both authentication and authorization
- Basics of Java Cryptography (JCA) and Encryption (JCE) and where they fit in the overall security picture
- Fundamentals of XML Digital Signature and XML Encryption
- Familiarity with Java and J2EE is required
- Programming experience is highly recommended
- At least six months of Java and J2EE working knowledge recommended
- This Secure Java Coding class is intended for Application project stakeholders who wish to develop secure Java application.