Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Securing Web Applications, Services, and Servers
Organizations today increasingly rely on the Internet and networked systems to conduct business. At the same time, cyber crime and security violations pose an ever-growing threat to business-critical functions and data. If Web applications are not enabled with the appropriate security countermeasures, third parties are able to eavesdrop and compromise the integrity of information passed to and from your Web applications. For organizations that share proprietary data across the Internet, intranets or other public networks, this is of particular concern. This course systematically exposes potential security threats, provides proven solutions and shows you the steps you can take today to help ensure the integrity and privacy of your Web applications. Special attention is paid to the Open Web Application Security Project (OWASP) Top Ten security issues.
Provider Information
Learning Tree International Inc
13650 Dulles Technology Drive
4th Floor Suite 400
Herndon, VA 20171-6156
Course Overview
Basic knowledge of Web application operation and Web server administration are assumed. You should have knowledge at the level of Course 470, Developing a Website. For example, you should have an understanding of Web browser/server operation, session management and basic HTML. In addition, experience with server-side Web application development and security knowledge is helpful.
13650 Dulles Technology Drive
4th Floor Suite 400
Herndon, VA 20171-6156
Learning Objectives
- Implement and test secure web applications in your organization
- Identify, diagnose and remediate the OWASP top ten web application security risks
- Configure a web server to encrypt web traffic with HTTPS
- Protect Ajax-powered applications and prevent JSON data theft
- Secure XML web services with WS Security
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.