-
CartDet finns inga varor i din kundvagn.DELTOTAL
Betala Nu -ELLER- betala Senare
Betala med kreditkort nu
-ELLER - betala mot faktura som vanligt.
-
-
Cart
Det finns inga varor i din kundvagn. Fortsätt handla på vår Kurskatalog sida.
DELTOTALBetala Nu -ELLER- betala Senare
Betala med kreditkort nu
-ELLER - betala mot faktura som vanligt.
-
Securing Web Applications, Services and Servers Training
Nivå: Intermediate
Snittbetyg:
4,81/5 Based on 111 Reviews
This Full Stack Cybersecurity Training for Web Apps and Services course provides in-depth, hands-on experience securing Web-based applications and the servers they run on. You will gain in-depth experience securing web services, and learn how to integrate robust security measures into the web application development process by adopting proven architectures and best practises.
This web service security course includes the OWASP top 10 most critical web application security risks and how to remediate them.
Nyckelfunktioner:
- After-course instructor coaching benefit
- Learning Tree end-of-course exam included
- After-course computing sandbox included
Du kommer lära dig att:
- Implement and test secure web applications in your organisation
- Identify, diagnose, and remediate the OWASP top ten web application security risks
- Configure a web server to encrypt web traffic with HTTPS
- Protect Ajax-powered applications and prevent JSON data theft
- Secure XML web services with WS-Security
Välj den utbildningsform som passar dig bäst
LIVE, LÄRARLEDD
I klass & Live, Online-utbildning
- 4-day instructor-led training course
- One-on-one after-course instructor coaching
- After-course computing sandbox
- Tuition can be paid later by invoice -OR- at the time of checkout by credit card
UTBILDNING PÅ DIN ARBETSPLATS
Teamträning
- Använd denna eller någon annan utbildning i ditt företag
- Fullskalig programutveckling
- Levereras när, var och hur du vill
- Blandade utbildningsmodeller
- Skräddarsytt innehåll
- Coaching av ett expertteam
Anpassa kurs och innehåll efter teamets behov
Kontakta ossUtveckla dig och ditt team med anpassade eller öppna kurser alternativt e-learning
Learning Tree erbjuder kundanpassad utbildning hos er, öppna kurser i Stockholm, London eller Washington, möjlighet att delta via våra Anywhere centers (Malmö, Göteborg, Linköping, Stockholm eller Borlänge) eller olika former av e-learning med lärarstöd. Läs mer på www.learningtree.se/priser .
I klass & Live, Online-utbildning
Note: This course runs for 4 dagar
-
29 nov - 2 dec 9:00 - 16:30 GMT Online (AnyWare)
Boka Din Kursplats -
7 - 10 mar 9:00 - 16:30 GMT Online (AnyWare)
Boka Din Kursplats -
6 - 9 jun 9:00 - 16:30 BST Online (AnyWare)
Boka Din Kursplats -
5 - 8 sep 9:00 - 16:30 BST Online (AnyWare)
Boka Din Kursplats -
7 - 10 dec 15:00 - 22:30 CCET Online (AnyWare)
Boka Din Kursplats -
22 - 25 feb 15:00 - 22:30 CCET Herndon, VA / Online (AnyWare)
Boka Din Kursplats -
31 maj - 3 jun 15:00 - 22:30 CCST New York / Online (AnyWare)
Boka Din Kursplats -
9 - 12 aug 15:00 - 22:30 CCST Herndon, VA / Online (AnyWare)
Boka Din Kursplats
Kurs med startgaranti
När du ser symbolen för “Guaranteed to Run” vid ett kurstillfälle vet du att kursen blir av. Garanterat.Securing Web Applications, Services and Servers Training Information
-
Recommended Experience
Basic knowledge of Web application operation and Web server administration are assumed. For example, you should have an understanding of Web browser/server operation, session management and basic HTML. In addition, experience with server-side Web application development and security knowledge is helpful.
Securing Web Applications, Services and Servers Training Outline
-
Setting the Stage
- Defining threats to your web assets
- Surveying the legal landscape and privacy issues
-
Establishing Security Fundamentals
Modelling web security
- Achieving Confidentiality, Integrity and Availability (CIA)
- Performing authentication and authorisation
Encrypting and hashing
- Distinguishing public– and private–key cryptography
- Verifying message integrity
-
Augmenting Web Server Security
Configuring security for HTTP services
- Managing software updates
- Restricting HTTP methods
Securing communication with SSL/TLS
- Obtaining and installing server certificates
- Enabling HTTPS on the web server
Detecting unauthorised modification of content
- Configuring permissions correctly
- Scanning for file–system changes
-
Implementing Web Application Security
Employing OWASP resources
- The Open Web Application Security Project (OWASP) top ten
- Remediating identified vulnerabilities
Securing database and application interaction
- Uncovering and preventing SQL injection
- Defending against an insecure direct object reference
Managing session authentication
- Protecting against session ID hijacking
- Blocking cross–site request forgery
Controlling information leakage
- Displaying sanitized error messages to the user
- Handling request and page faults
Performing input validation
- Establishing trust boundaries
- Removing the threat of Cross–Site Scripting (XSS)
- Exposing the dangers of client–side validation
- Implementing robust server–side input validation with regular expressions
-
Enhancing Ajax Security
Ajax features
- Identifying core Ajax components
- Exchanging information asynchronously
Assessing risks and evaluating threats
- Managing unpredictable interactions
- Exposing Ajax vulnerabilities
-
Securing XML Web Services
Diagnosing XML vulnerabilities
- Identifying nonterminated tags and field overflows
- Uncovering web service weaknesses
Protecting the SOAP message exchange
- Validating input with an XML schema
- Encrypting exchanges with HTTPS
- Implementing WS–Security with a framework
-
Scanning Applications for Weaknesses
Operating and configuring scanners
- Matching patterns to identify faults
- "Fuzzing" to discover new or unknown vulnerabilities
Detecting application flaws
- Scanning applications remotely
- Finding vulnerabilities in web applications with OWASP and third–party penetration testing tools
-
Best Practises for Web Security
Adopting standards
- Reducing risk by implementing proven architectures
- Handling personal and financial data
Managing network security
- Modelling threats to reduce risk
- Integrating applications with your network architecture
Teamträning
Securing Web Applications, Services and Servers Training FAQs
-
What is web service security?
Applies security to web services. It is an extension to SOAP and a member of the web service specifications.
-
Can I learn web service security online?
Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.
Questions about which training is right for you?
08-506 668 00
Why do we require your location?
It allows us to direct your request to the appropriate Customer Care team.
Your Training Comes with a 100% Satisfaction Guarantee!*
*Partner-delivered courses may have different terms that apply. Ask for details.