|
|
|
|
Title: |
2806 Microsoft Security Guidance Training for Developers - ML |
|
Delivery Method: |
Mentored Learning |
|
Duration: |
2 Sessions |
|
Overview: |
This course provides students with knowledge and skills essential for the creation of applications with enhanced security. Students learn about implementing security during the development process and best practices for applying security principles. |
| Who
Should Attend: |
Attendees will be professional developers who are responsible for designing and developing applications, components, clients, or back-end data services written in Microsoft Visual Basic, Microsoft Visual C++, or C#. |
| Pre-requisite(s): |
Before attending this clinic, students must have:
• Development experience with Microsoft Visual Basic, Microsoft Visual C++, or C#
• Experience building Microsoft Windows or Web applications using the .NET Framework |
| CPE
Information: |
CPE Credits:
0
hours
Course Level: Basic
Instructional Method: Group-live
Additional CPE Information |
|
Outline: |
Lesson 1: Essentials of Application Security
The Importance of Application Security
Secure Application Development Practices
Security Technologies
Secure Development Guidelines
Lesson 2: Writing Secure Code – Best Practices
Secure Development Process
Threat Modeling
Risk Mitigation
Security Best Practices
Lesson 3: Writing Secure Code – Threat Defense
The Need For Secure Code
Defending Against Memory Issues
Defending Against Arithmetic Errors
Defending Against Cross-Site Scripting
Defending Against SQL Injection
Defending Against Canonicalization Issues
Defending Against Cryptography Weaknesses
Defending Against Unicode Issues
Defending Against Denial of Service
Lesson 4: Implementing Application Security Using the .NET Framework
.NET Framework Security Features
Code Access Security
Role-Based Security
Cryptography
Securing ASP.NET Web Applications
Securing ASP.NET Web Services |
|
