Course in Java Web Application Security

+ Information by E-mail

Entry requirements - PC with reasonably good configuration
- Broadband connection (or Internet access using your Company/Organisation network etc.)
- Headphones with microphone.
- Basic knowledge of working with PC and Internet
Course description
This is an ‘Advanced’ Level course designed to teach the experienced developers of Java web applications how to secure those applications and to apply best practices with regard to secure enterprise coding. Authentication, authorization, and input validation are major themes, and students get good exposure to basic Java cryptography for specific development scenarios, as well as thorough discussions of HTTPS configuration and certificate management, error handling, logging, and auditing.

Working with Security Roles
- Declaring Security Roles
- Mapping Security Roles to Application Server groups
- An Example Visual Basic .NET Program
Checking Caller Identity
- Declaring and Linking Role references
Defining Security Requirements for Web Applications
- Declaring Security Requirements
- Specifying a Secure Connection
- Specifying an Authentication mechanism
Application-Level Cryptography

Error Handling, Auditing, and Logging