SEC.301 Secure Coding Java

The Secure Coding training for Java teaches the correct usage of exception handling, multi-threading and other Java-specific methods that are necessary as a basis for developing robust code. In addition, various cryptographic technologies will be discussed, including encryption, hashing and digital signatures. Classical web attacks such as cross-site scripting, SQL injection and cross-site request forgery will be explained as well as how applications can be protected against them. Practical exercises are used to create a deep understanding of the different subject areas. In order to further increase the code quality, the correct handling of code reviews is demonstrated as well as how the learned techniques can be integrated into the Secure Development Lifecycle.

The training is particularly recommended for

Developers who do develop on a daily basis.The training offers a healthy mix of Back-end and Front-end developer topics and also includes several topics regarding for Software Architects.

The training in a nutshell

• Ideal entry-level training for secure software development
• Duration: 3 days
• Course Language: German or English
• Requirements: No previous knowledge, own notebook necessary
• Completion with certificate of participation
• Public and in-house training possible

Content of training

After the training the participants should

• understand how attacks work and start thinking like an attacker
• understand why secure software development is important and why to implement it
• understand what steps are necessary for a secure software development
• be capable to integrate secure development into their area of responsibility