Java Advanced Secure Coding

Course Description

Java Advanced Secure Coding continues where Java Security Fundamentals leaves off. This course discusses advanced coding concepts and significant platform security features and applies them to practical use cases to address typical business security challenges. We cover preventing injection attacks, platform authentication and access control, cryptography, secure network communications, public key infrastructure, and web security, along with a summary of newer features introduced in Java 8/9.

Course Themes

• Common vulnerabilities
• Platform and third-party security controls
• Applied defensive techniques

Learning Objectives

• Learn about platform authentication and access control libraries, cryptography, and secure communications over untrusted networks.
• Learn PKI concepts and relevant Java platform security controls, such as the CertPath API, PKIX, and OCSP/CRL revocation services.
• Apply practical ideas to defend against SQL injection, XML parser attacks, CSRF, XSS, URL attacks, HTTP response redirect attacks, and more using the Java platform as well as third-party security libraries, such as OWASP.