Even experienced Java programmers are not mastering by all means the various security services offered by Java, and are likewise not aware of the different vulnerabilities that are relevant for web applications written in Java.
The course – besides introducing security components of Standard Java Edition – deals with security issues of Java Enterprise Edition (JEE) and web services. Discussion of specific services is preceded with the foundations of cryptography and secure communication. Various exercises deal with declarative and programmatic security techniques in JEE, while both transport-layer and end-to-end security of web services is discussed. The use of all components is presented through several practical exercises, where participants can try out the discussed APIs and tools for themselves.
The course also goes through and explains the most frequent and severe programming flaws of the Java language and platform and web-related vulnerabilities. Besides the typical bugs committed by Java programmers, the introduced security vulnerabilities cover both language-specific issues and problems stemming from the runtime environment. All vulnerabilities and the relevant attacks are demonstrated through easy-to-understand exercises, followed by the recommended coding guidelines and the possible mitigation techniques.
Participants attending this course will
- Understand basic concepts of security, IT security and secure coding
- Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
- Understand security concepts of Web services
- Learn to use various security features of the Java development environment
- Have a practical understanding of cryptography
- Understand security solutions of Java EE
- Learn about typical coding mistakes and how to avoid them
- Get information about some recent vulnerabilities in the Java framework
- Get practical knowledge in using security testing tools
- Get sources and further readings on secure coding practices
Audience
Developers
- IT security and secure coding
- Web application security
- Security of Web services
- XML security
- Foundations of Java security
- Practical cryptography
- Java security services
- Java EE security
- Common coding errors and vulnerabilities
- Knowledge sources
United Arab Emirates - Advanced Java Security
Qatar - Advanced Java Security
Egypt - Advanced Java Security
Saudi Arabia - Advanced Java Security
South Africa - Advanced Java Security
Brasil - Advanced Java Security
Canada - Advanced Java Security
Österreich - Advanced Java Security
Schweiz - Advanced Java Security
Deutschland - Advanced Java Security
Czech Republic - Advanced Java Security
Denmark - Advanced Java Security
Estonia - Advanced Java Security
Finland - Advanced Java Security
Greece - Advanced Java Security
Magyarország - Advanced Java Security
Ireland - Advanced Java Security
Luxembourg - Advanced Java Security
Latvia - Advanced Java Security
España - Seguridad Java Avanzada
Italia - Advanced Java Security
Lithuania - Advanced Java Security
Nederland - Advanced Java Security
Norway - Advanced Java Security
Portugal - Advanced Java Security
România - Advanced Java Security
Sverige - Advanced Java Security
Türkiye - Advanced Java Security
Malta - Advanced Java Security
Belgique - Advanced Java Security
France - Advanced Java Security
Australia - Advanced Java Security
Malaysia - Advanced Java Security
New Zealand - Advanced Java Security
Philippines - Advanced Java Security
Singapore - Advanced Java Security
Thailand - Advanced Java Security
Vietnam - Advanced Java Security
India - Advanced Java Security
Argentina - Seguridad Java Avanzada
Chile - Seguridad Java Avanzada
Costa Rica - Seguridad Java Avanzada
Ecuador - Seguridad Java Avanzada
Guatemala - Seguridad Java Avanzada
Colombia - Seguridad Java Avanzada
México - Seguridad Java Avanzada
Panama - Seguridad Java Avanzada
Peru - Seguridad Java Avanzada
Uruguay - Seguridad Java Avanzada
Venezuela - Seguridad Java Avanzada
Polska - Advanced Java Security
United Kingdom - Advanced Java Security
South Korea - Advanced Java Security
Pakistan - Advanced Java Security
Sri Lanka - Advanced Java Security
Bulgaria - Advanced Java Security
Bolivia - Seguridad Java Avanzada
Indonesia - Advanced Java Security
Kazakhstan - Advanced Java Security
Moldova - Advanced Java Security
Morocco - Advanced Java Security
Tunisia - Advanced Java Security
Kuwait - Advanced Java Security
Slovakia - Advanced Java Security
Kenya - Advanced Java Security
Nigeria - Advanced Java Security
Botswana - Advanced Java Security
Slovenia - Advanced Java Security
Croatia - Advanced Java Security
Serbia - Advanced Java Security
Bhutan - Advanced Java Security