Secure Coding in Java EE

The Secure Coding in Java EE training course provides students with the background and knowledge required to create secure enterprise-class Java EE-based applications.

The course begins with a review of the core Java security model. Building on this, Secure Coding in Java EE training then examines how to create secure Java web-based and enterprise-based applications, covering everything from security fundamentals to authentication and authorization strategies to preventing cross-site scripting and sequel injections.

The course also covers tips, tricks, strategies, and design principles required to build secure Java applications.

Course Summary

Purpose: 
Learn how to build secure and robust Java web-based and EJB applications.
Audience: 
Advanced Java EE programmers who need to write secure Java applications.
Skill Level: 
Learning Style: 

Hands-on training is customized, instructor-led training with an in-depth presentation of a technology and its concepts, featuring such topics as Java, OOAD, and Open Source.

Hands On help
Duration: 
3 Days
Productivity Objectives: 
  • Understand what security is
  • Add basic, programmatic security to your code
  • Understand how to defend against an attack
  • Understand how to secure resources
Secure Coding in Java EE is part of the J2EE Training / Java EE Training curriculum.
All of our Java EE courses can delivered using Java EE 5, Java EE 6 or Java EE 7. The Secure Coding in Java EE training course can be taught using the Java IDE - NetBeans, Eclipse, IntelliJ, etc. *and* Java EE Application Server (JBoss, Glassfish , WebLogic , WebSphere , Tomcat, etc.) of your choice.

What You'll Learn

In the Secure Coding in Java EE training course, you’ll learn:

  • Fundamentals
    • Why and what?
    • Characteristics of application security
    • Basic security mechanisms
  • Basic Security within Java SE 8
    • Mutability of objects
    • Variable, method, class, and package scopes
    • Thread safety
    • Exception handling
    • Input validation
  • Basic Security at the EE level
    • Role-based authentication
    • Specifying Security Constraints
    • Programmatic security
    • Declarative security
  • Programming Against an Attack
    • Denial of Service (DoS)
    • SQL Injection
    • Large files
    • XML and HTML issues
    • LDAP injection
    • XPath injection
    • Password storage
  • Defensive Programming
    • Error handling in the Java EE space
    • Type annotation syntax and the Checker Framework
    • Application-layer security
    • Transport-layer security
    • Message-layer security
    • Secure connection using SSL
  • Securing Resources
    • Authentication mechanisms
    • Using Form-Based Login
    • Digital certificates
    • Using JDBC realm
    • Securing HTTP resources
    • Securing Application clients

Meet Your Instructor

Simon

Simon has over 15 years of experience defining, developing, and delivering software development training programs.

As a senior instructor and courseware developer for Sun Microsystems, Simon developed and delivered Java training courses for Sun Educational Services’ internal and external customers. While at Sun, he was a guest presenter at JavaOne, Java University, and other software trade shows. Simon’s most significant accolade was his work as the development lead in the design, development,...

Meet Simon »
Peter

Peter is a Senior Java Developer / Architect / Manager with over 20 years of experience in the analysis, design, and development of computer systems, including 20 years of experience architecting and delivering web-based IT solutions.  Peter manages and leads an experienced team of Java and object-oriented programming specialists that provide a wide range of technical services.  Peter founded Java Enterprise Solutions in 1998 after working for Sun Microsystems advancing Java and Java technologies. While at...

Meet Peter »
Marnie picture
Marnie

Marnie brings 15 years of experience delivering programming related training. During that time she has taught for top-technology companies including: Sun (and later Oracle) certified Java classes, RedHat Certified JBoss administration courses, Spring Source Certified Spring and Hibernate courses. Her classes have run the gamut from introduction to programming classes to Java EE web services and much of the Java EE stack in between.

She has a passion for teaching, which is evident in her presentations and...

Meet Marnie »

Contact us to learn more

Not all training courses are created equal. Let the customization process begin! We'll work with you to design a custom Secure Coding in Java EE training course that meets your specific needs.

DevelopIntelligence has been in the technical/software development learning and training industry for nearly 20 years. We’ve provided learning solutions to more than 48,000 engineers, across 220 organizations worldwide.

About Develop Intelligence
Di Clients

surveyask

Need help finding the right learning solution?   Call us: 877-629-5631