This suite contains all of the content from our Secure Coding Curriculum, over 15 hours of CBT ‘seat time’.
This course includes the modules from our Designing Secure Systems
Course followed by the Top 25 Programming Errors course and also
includes the 6 secure coding ‘elective’ modules. Comprising
approximately 15 hours of CBT seat time, this course provides the most
thorough of secure application development.
This class is appropriate for students who are programmers as you cannot
code your way out of a bad design. Recognizing design flaws earlier
allows them to be fixed with fewer resources.
Course Modules
1 – Designing and coding secure programs
2 – Threat models and risk management
3 – Security and the software development life cycle
4 – Input validation and representation
6 – Fail securely
6 – Logging
7 – State and the web
8 – Authorization and Access Control
9 – Code reviews (auditing) for security
10 – Software testing for security
TOP 25 MOST DANGEROUS PROGRAMMING ERRORS
The CWE/SANS Top 25 Most Dangerous Programming Errors list are the most
dangerous errors that programmers and system designers regularly make.
The OWASP Top 10 is a list of the top 10 security-related errors that
web application programmers regularly make. Companies producing code
that must meet SOX, HIPAA, PCI DSS, and/or other security regulations or
laws need programmers trained in avoiding these errors. The class has
examples, specific information, and labs written for C/C++, Java, and
C#. Every chapter also has web and/or print references for the student
to follow to obtain more information.
Purchase courses: Secure Coding Series