Building on the Foundations of COBOL Security course, this module explores specific defensive programming techniques to create secure COBOL programs. The course follows a well-established software security vulnerability taxonomy to walk students through a set of defensive programming best practices that are applicable to the COBOL environment. The vision behind the course is to teach secure developer behaviors that follow the principle of defense-in-depth and will help prevent COBOL programs from being the weakest link in the enterprise security chain. Among other techniques covered, the course discusses COBOL-specific methods for input validation, secure database interactions, secure error handling, and proper resource synchronization.
Delivery Format: eLearning
Duration: 1/2 hour