PDP Url

Developing Secure Java Web Applications - Lifecycle (SDLC) (TT8325-J)

Secure Java Web Application Development Lifecycle (SDL) is a lab-intensive, hands-on Java / JEE security training course, essential for experienced enterprise developers who need to engineer, maintain, and support secure JEE-based web applications.

Virtual

Learning Style

Java

Provider

Intermediate

Difficulty

5 Days

Course Duration

Course Info

Download PDF

Certificate

See Sample

Buy Individually
tab
About Individual Course:
  • Individual course plan gives you access to this course
$2,495.00
$2,495.00
/ Seat

You have already taken demo for this course.

If you want to get access to demo again, feel free to contact our support at (855) 800-8240
Secure Java Web Application Development Lifecycle (SDL) is a lab-intensive, hands-on Java / JEE security training course, essential for experienced enterprise developers who need to engineer, maintain, and support secure JEE-based web applications.

Course Information

About this course:

Secure Java Web Application Development Lifecycle (SDL) is a lab-intensive, hands-on Java / JEE security training course, essential for experienced enterprise developers who need to engineer, maintain, and support secure JEE-based web applications. In addition to teaching basic secure programming skills, this course digs deep into sound processes and practices that apply to the entire software development lifecycle.  

In this course, students thoroughly examine best practices for defensively coding web applications, including XML processing, rich interfaces, and both RESTful and SOAP-based web services.  Students will repeatedly attack and then defend various assets associated with fully-functional web applications and web services.  This hands-on approach drives home the mechanics of how to secure JEE web applications in the most practical of terms.

Security experts agree that the least effective approach to security is "penetrate and patch".  It is far more effective to "bake" security into an application throughout its lifecycle.  After spending significant time trying to defend a poorly designed (from a security perspective) web application, developers are ready to learn how to build secure web applications starting at project inception.  The final portion of this course builds on the previously learned mechanics for building defenses by exploring how design and analysis can be used to build stronger applications from the beginning of the software lifecycle. 

A key component to our Best Defense IT Security Training Series, this workshop is a companion course with several developer-oriented courses and seminars.   Although this edition of the course is Java-specific, it may also be presented using .Net or other programming languages.

The average salary of a Java Developer is $69,722 per year.

Course Objective:

  • Understand potential sources for untrusted data
  • Understand the consequences for not properly handling untrusted data such as denial of service, cross-site scripting, and injections
  • To test web applications with various attack techniques to determine the existence of and effectiveness of layered defenses
  • Prevent and defend the many potential vulnerabilities associated with untrusted data
  • Understand the vulnerabilities of associated with authentication and authorization
  • To detect, attack, and implement defenses for authentication and authorization functionality and services
  • Understand the dangers and mechanisms behind Cross-Site Scripting (XSS) and Injection attacks
  • To detect, attack, and implement defenses against XSS and Injection attacks
  • Understand the concepts and terminology behind defensive, secure, coding
  • Understand the use of Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against meaningful assets
  • Perform both static code reviews and dynamic application testing to uncover vulnerabilities in Java-based web applications
  • Design and develop strong, robust authentication and authorization implementations within the context of JEE
  • Understand the fundamentals of XML Digital Signature and XML Encryption as well as how they are used within the web services arena
  • To detect, attack, and implement defenses for both RESTful and SOAP-based web services and functionality
  • Understand techniques and measures that can used to harden web and application servers as well as other components in your infrastructure
  • Understand and implement the processes and measures associated with the Secure Software Development (SSD)
  • Acquire the skills, tools, and best practices for design and code reviews as well as testing initiatives
  • Understand the basics of security testing and planning
  • Work through a comprehensive testing plan for recognized vulnerabilities and weaknesses

Audience:

  • This is an intermediate -level JEE programming course, designed for developers who wish to get up and running on developing well defended software applications.  This course may be customized to suit your team’s unique objectives.

Prerequisite:

  • Familiarity with Java and JEE is required and real world programming experience is highly recommended.  Ideally students should have approximately 6 months to a year of Java and JEE working knowledge.

Outline

More Information

More Information
BrandJava
SubjectsApp Development, Information Security
Lab AccessNo
TechnologyProgramming Language
Learning StyleVirtual Classroom
Learning TypeCourse
DifficultyIntermediate
Course Duration5 Days
LanguageEnglish

Reviews

Write Your Own Review
Only registered users can write reviews. Please Sign in or create an account

Information
Virtual instructor Led

Virtual Classroom Courses

Our virtual instructor-led courses give you access to live instructors training you with other live students in a virtual classroom environment.

200+ Virtual Classroom Courses
Information
Self-Paced

Online Self-Paced Courses

Take self-paced online courses at your convenience and own pace, with unlimited access to courses in various emerging technologies.

700+ Self-Paced Courses
Information
College

E-books blogs, case studies, ariticles

As part of informal learning, our platform will recommend E-books, whitepapers, case studies, articles, and videos. This is AI curated content closely aligned with your learning objectives.

E-books blogs, case studies,...
Information
College

College Accredited Courses

QuickStart courses are accredited by several top schools and universities, including Texas A&M and University of Phoenix. You can print out certificates and also apply them towards your degree plan with them.

College Accredited
Information
Dashboard

Full Learning Dashboard & Analytics

Access all your enrolled, completed, course statistics, and community discussions from one centralized and intuitive learning dashboard with built in analytics, course tracking, time spent, and more.

Analytics/Reporting
Information
Social

QuickStart Discussions

Engage with other learners where you can directly chat, ask questions, and socialize with other learners experts and instructors on a course subject.

Community Access Community Access
Information
Labs

Virtual Labs

Videos and lectures only go so far. Get real world, hands-on practice with virtual labs (not available for all courses).

Virtual Labs Virtual Labs
Information
Live Instructor Support

Live Instructor Mentoring & Support

Get your IT problems solved through a community of mentors, experts and peers. Get live help from experts to answer questions on course material or guidance on a project.

Mentoring & Discussions Mentoring & Discussions
Information
Dashboard

Career Paths

Start a learning pathway towards understanding and mastering your career. With QuickStart career paths, you can fully understanding and being the best in your field.

Learning Paths Learning Paths
Information
Dashboard

Informal Learning

Access to AI curated content from various content publishers which can help in self-directed learning.

Informal Learning Informal Learning
click here