The Secure Coding in Java EE training course provides students with the background and knowledge required to create secure enterprise-class Java EE-based applications.
The course begins with a review of the core Java security model. Building on this, Secure Coding in Java EE training then examines how to create secure Java web-based and enterprise-based applications, covering everything from security fundamentals to authentication and authorization strategies to preventing cross-site scripting and sequel injections.
The course also covers tips, tricks, strategies, and design principles required to build secure Java applications.
- Understand what security is
- Add basic, programmatic security to your code
- Understand how to defend against an attack
- Understand how to secure resources
What You'll Learn
In the Secure Coding in Java EE training course, you’ll learn:
- Why and what?
- Characteristics of application security
- Basic security mechanisms
- Basic Security within Java SE 8
- Mutability of objects
- Variable, method, class, and package scopes
- Thread safety
- Exception handling
- Input validation
- Basic Security at the EE level
- Role-based authentication
- Specifying Security Constraints
- Programmatic security
- Declarative security
- Programming Against an Attack
- Denial of Service (DoS)
- SQL Injection
- Large files
- XML and HTML issues
- LDAP injection
- XPath injection
- Password storage
- Defensive Programming
- Error handling in the Java EE space
- Type annotation syntax and the Checker Framework
- Application-layer security
- Transport-layer security
- Message-layer security
- Secure connection using SSL
- Securing Resources
- Authentication mechanisms
- Using Form-Based Login
- Digital certificates
- Using JDBC realm
- Securing HTTP resources
- Securing Application clients
Meet Your Instructor
Simon has over 15 years of experience defining, developing, and delivering software development training programs.
As a senior instructor and courseware developer for Sun Microsystems, Simon developed and delivered Java training courses for Sun Educational Services’ internal and external customers. While at Sun, he was a guest presenter at JavaOne, Java University, and other software trade shows. Simon’s most significant accolade was his work as the development lead in the design, development,...Peter
Peter is a Senior Java Developer / Architect / Manager with over 20 years of experience in the analysis, design, and development of computer systems, including 20 years of experience architecting and delivering web-based IT solutions. Peter manages and leads an experienced team of Java and object-oriented programming specialists that provide a wide range of technical services. Peter founded Java Enterprise Solutions in 1998 after working for Sun Microsystems advancing Java and Java technologies. While at...Marnie
Marnie brings 15 years of experience delivering programming related training. During that time she has taught for top-technology companies including: Sun (and later Oracle) certified Java classes, RedHat Certified JBoss administration courses, Spring Source Certified Spring and Hibernate courses. Her classes have run the gamut from introduction to programming classes to Java EE web services and much of the Java EE stack in between.
She has a passion for teaching, which is evident in her presentations and...