|
Event Announcements
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Historical
Announcing SANS 422: Web Application Security Essentials
- From: Merit Network Professional Learning
- Date: Tue Nov 25 15:08:00 2008
Merit Network is pleased to host an interactive video presentation of
the SANS Institute's Security 422 course, "Web Application Security
Essentials." The workshop will be held Monday through Wednesday, January
12-14, 2009 at the MITC bulding in Ann Arbor. The workshop will be of
value to anyone interested in securing Web applications against common
threats.
In this innovative presentation, the course will be delivered by a SANS
instructor via interactive teleconference to several participating sites
across the U.S. A full course description appears below.
The registration fee for attendees from educational institutions and
state and local governments is $995, a savings of over 60% compared to
the standard price of $2,764 when delivered in a classroom setting. This
is a unique opportunity to engage in very high-quality security training
at a tremendous savings. In accordance with the SANS Institute's
policies, the reduced price is available only to attendees from
educational institutions and state and local governments. Others may
attend for the retail price of $2,764.
Registration is now available at:
http://www.merit.edu/learning/sans422
Details about the course
------------------------
Web Application Security Essentials is a three-day hands-on,
action-packed course covering the defensive strategies for Web
applications against current and future attacks. This course will help
you understand the fundamental reasons behind the Web vulnerabilities
which will then enable you to properly defend your organization's Web
assets. Mitigation strategies from an infrastructure, architecture, and
coding perspective will be discussed alongside real-world
implementations that really work. The key security problem areas of Web
applications will be covered, as well as new technology areas such as
AJAX and Web Services.
To maximize the benefit for a wider range of audiences, the discussions
in this course will be programming language agnostic. Focus will be
maintained on security strategies rather than coding level
implementation. Specific topic to be covered include:
* Securing Web Application Infrastructures
* Cryptography
* Authentication
* Access Control
* Session Mechanism Protection
* Web Application Logging
* Input Issues and Proper Validation
* SQL Injection Defense
* Cross-Site Scripting Defense
* Phishing Defense
* HTTP Response Splitting and Defense
* Cross-Site Request Forgery Defense
* AJAX Security
* Web Services Security
This course is intended for anyone tasked with implementing secure Web
applications. Web Application Security Essentials is particularly well
suited to application security analysts, developers, application
architects, pen testers who are interested in recommending proper
mitigations to security issues, and infrastructure security
professionals who have an interest in better defending their Web
applications.
For more information please contact learning@merit.edu.
--Merit Network Professional Learning
http://www.merit.edu/learning
learning@merit.edu
=========================================================
Upcoming Merit Professional Learning events:
MITE Forum Meeting
January 15, 2009, Ann Arbor
http://www.merit.edu/resources/mite
PacketShaper Level I and Level II Training
January 19-23, 2009, Ann Arbor
http://www.merit.edu/learning/packeteer
SAVE THE DATE:
2009 Merit Member Conference
June 10-12, 2009
Ann Arbor
-----------------------------------------------------------------
TO UNSUBSCRIBE:
This list is used for occasional announcements of Merit
Network's Professional Learning events. You have been included
because we believe you may have interest in these events. If
you don't want to receive future announcements, please send
email to majordomo@merit.edu with the text:
unsubscribe event-announcements
------------------------------------------------------------------
|
|
|
