EC-Council Certified Secure Programmer lays the foundation required by all application developers and development organizations to produce applications with greater stability and fewer security risks to the consumer.
The ECSP certification is intended for programmers who are responsible for designing and building secure Windows/Web based applications with Java. It is designed for developers who have Java development skills.
You must be well-versed with Java programming language.
Klassikaal en Maatwerk
Students in this course will acquire knowledge in the following areas:
Java security principles and secure coding practices
Java Security Platform, Sandbox, JVM, Class loading, Bytecode verifier, Security Manager, security policies, and Java Security Framework
Secure Software Development Lifecycle, threat modelling, software security frameworks, and secure software architectures
Best practices and standards and guidelines for secure file input/output and serialization
Java input validation techniques, validation errors, and best practices
Java exceptions, erroneous behaviors, and the best practices to handle or avoid them
Secure authentication and authorization processes
Java Authentication and Authorization Service (JAAS), its architecture, Pluggable Authentication Module (PAM) Framework, and access permissions through Java Security Model
Secure Java concurrency and session management that includes Java Memory Model, Java Thread Implementation methods, secure coding practices, and guidelines for handling threads, race conditions, and deadlocks
Core security coding practices of Java Cryptography that includes Encryption, KeyGenerator, implementation of Cipher Class, Digital Signatures, Secret Keys, and key management
Various Java application vulnerabilities such as Cross-Site Scripting (XSS), Cross Site Request Forgery (CSRF), Directory Traversal vulnerability, HTTP Response Splitting attack, Parameter Manipulation, Injection Attacks and their countermeasures
Coding testing and review techniques and practices
The ECSP .NET 312-94 exam will be conducted on the
last day of training. Students need to pass the online exam to receive the ECSP certification.
This training is conducted by an EC-Council certified organization