Secure Programming Foundation
- Code training S-SPF
- Duur 2 dagen
Andere trainingsmethoden
Methode
Deze training is in de volgende formats beschikbaar:
-
Class Connect
Verbind naar een klas in HD
-
Klassikale training
Klassikaal leren
-
Op locatie klant
Op locatie klant
-
Virtueel leren
Virtueel leren
Vraag deze training aan in een andere lesvorm.
Trainingsbeschrijving
Naar bovenThe S-SPF Secure Programming certificate by SECO demonstrates your ability to understand the logic behind security principles and apply security principles in design and code. The certificate enables you to exhibit your knowledge about web application vulnerabilities and the most effective ways to discover, prevent and eradicate these vulnerabilities.
With a Secure Programming certificate, you will be internationally recognised as a secure software developer.
Data
Naar bovenDoelgroep
Naar bovenTrainingsdoelstellingen
Naar bovenSecure Programming Foundation equips you with the knowledge and skills you need to lay the foundations of a thriving career as a secure software developer, software engineer or software auditor.
By passing the SPF certification exam and earning a SECO-Secure Programming Foundation (S-SPF) certificate, you demonstrate your ability to
- Understand the importance of security in the software lifecycle and the logic behind industry-approved secure development principles;
- Understand web application attack surfaces and trust boundaries;
- Understand the workings of HTTP requests and header injection;
- Understand password authentication vulnerabilities and effective countermeasures;
- Understand the security implications of session management and identify effective countermeasures against session fixation;
- Identify countermeasures against cross-site request forgery (CSRF) and clickjacking attacks;
- Identify countermeasures against injection attacks;
- Identify countermeasures against buffer overflows;
- Identify countermeasures against cross-site scripting (XSS);
- Identify countermeasures against file upload attacks;
- Identify countermeasures against character encoding vulnerabilities;
- Understand privilege escalation and list relevant mitigation techniques;
- Secure products by hardening and vulnerability scanning;
- Understand how to prevent side-channel attacks;
- Understand how to prevent DoS attacks;
- Understand the importance of good error handling practices;
- Understand the security risks involved in logging;
- Understand symmetric and asymmetric cryptography, Man-in-the-Middle attacks, and the pitfalls in SSL/TLS and HTTPS certificates.
- Explain how security requirements can/should be identified;
- Perform simple threat modelling exercises and identify security requirements for a system.
Inhoud training
Naar boven- Introduction to Secure Programming
- Secure Programming Awareness
- Authentication and Session Management
- Input Handling
- Authorization
- Configuration, Error Handling and Logging
- Cryptography
- Secure Software Engineering
Voorkennis
Naar bovenExperience with at least one programming language is required.
The course and the certificate are ideal for your career advancement if you are a(n)
- (Aspiring) software developer, software engineer or software auditor;
- Aspiring lead developer or architect;
- Aspiring software development manager.
- #000000
- S-SPF
- Secure Programming Foundation
- Secure Coding
- TRAINING | Secure Programming Foundation | S-SPF
- Seco Institute