1. Training
  2. Education & Training Catalog
  3. QuickStart Learning Inc.
  4. Developing Secure .Net Web Applications (TT8320-N)

Developing Secure .Net Web Applications (TT8320-N)

Secure .Net Web Application Development is a lab-intensive, hands-on .Net security training course, essential for experienced enterprise developers who need to engineer, maintain, and support secure .Net-supported web applications.

Course Overview

Overall Proficiency Level
2 - Intermediate
Course Prerequisites

Familiarity with C# is required and real world programming experience is highly recommended. Ideally students should have approximately 6 months to a year of .Net development practical experience.

Training Purpose
Skill Development
Specific Audience
All
Delivery Method
Online, Instructor-Led
  • Online, Instructor-Led

Learning Objectives

Understand potential sources for untrusted data
Understand the consequences for not properly handling untrusted data such as denial of service, cross-site scripting, and injections
To test web applications with various attack techniques to determine the existence of and effectiveness of layered defenses
Prevent and defend the many potential vulnerabilities associated with untrusted data
Understand the vulnerabilities of associated with authentication and authorization
To detect, attack, and implement defenses for authentication and authorization functionality and services
Understand the dangers and mechanisms behind Cross-Site Scripting (XSS) and Injection attacks
To detect, attack, and implement defenses against XSS and Injection attacks
Understand the concepts and terminology behind defensive, secure, coding
Understand the use of Threat Modeling as a tool in identifying software vulnerabilities based on realistic threats against meaningful assets
Perform both static code reviews and dynamic application testing to uncover vulnerabilities in .Net-based web applications
Design and develop strong, robust authentication and authorization implementations within the context of .Net
Understand the fundamentals of XML Digital Signature and XML Encryption as well as how they are used within the web services arena
To detect, attack, and implement defenses for both RESTful and SOAP-based web services and functionality
Understand techniques and measures that can used to harden web and application servers as well as other components in your infrastructure

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Software Development

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.

Last Published Date: