Event Announcements
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Historical
Announcing SANS 319: Introduction to Web Application Security
- From: Merit Network Professional Learning
- Date: Wed May 13 09:46:03 2009
Merit Network is pleased to host an interactive video presentation of
the SANS Institute's Security 319 course, "Introduction to Web
Application Security." The workshop will be held Monday and Tuesday,
June 29-30, 2009 at the MITC building in Ann Arbor. The workshop will be
of value to anyone interested in securing Web applications against
common threats.
In this innovative presentation, the course will be delivered by a SANS
instructor via interactive teleconference to several participating sites
across the U.S. A full course description appears below.
The registration fee for attendees from educational institutions and
state and local governments is $750, a savings of over 55% compared to
the standard price of $1,700 when delivered in a classroom setting. This
is a unique opportunity to engage in very high-quality security training
at a tremendous savings. In accordance with the SANS Institute's
policies, the reduced price is available only to attendees from
educational institutions and state and local governments. Others may
attend for the retail price of $1,700.
Registration is now available at:
http://www.merit.edu/learning/sans319
Details about the course
------------------------
From a mere 26 Web servers operating in November 1992 growing to well
over 100 million Web sites today, we have come a long way in Web
technology over a short period of time. Today, almost every organization
has its own Web site for conducting business transactions or other
critical functions. And for many companies, their online presence has
become a major revenue generator. As everyone jumps on the bandwagon to
do business on the Web, many problems can arise which are directly
related to the security aspects of Web applications. The adage "where
there is money, there is crime" has become true on a daily basis as we
see credit cards and other financial data compromised through Web
application vulnerabilities. And that is not even the full extent of the
problem because Web-based malware and worms are still spreading in the wild.
"Intro to Web Application Security" is a two-day, hands-on,
action-packed course covering the common vulnerabilities that are
leveraged by attackers, the basic principles of securing Web
applications, and basic testing techniques for detecting the
vulnerabilities. This course will help you understand the mechanics of
the components necessary for effective Web application security which
will then enable you to properly defend your organization's assets. With
the information you learn in this class, you will be able to perform
basic security testing on Web applications as well as architect, design,
and develop more secure Web applications.
This course is particularly well suited to developers, QA analysts, and
infrastructure security professionals who have an interest in exploring
the Web application security world.
Sampling of Topics
* Securing Web Application Architectures and Infrastructures
* Cryptography
* Authentication
* Access Control
* Session Mechanism
* Web Application Logging
* Input Issues and Validation
* SQL Injection
* Cross-Site Scripting
* Phishing
* HTTP Response Splitting
* Cross-Site Request Forgery
Who Should Attend?
* Security practitioners and managers
* Auditors
* QA analysts who want to learn the mechanics of Web applications
for better testing
* IT infrastructure professionals who want a basic understanding of
Web technologies and security issues
* Anyone interested in techniques for securing Web applications
Laptop requirement
------------------
Students attending this course are required to bring their own laptops
that are properly configured. There is not enough time in class to help
you install your laptop; your laptop must be properly installed and
configured before you come to class. Requirements are given at:
http://www.sans.org/training/laptop.php?tid=2382
Complete information and registration are available at:
http://www.merit.edu/learning/sans319
For more information please contact learning@merit.edu.
--Merit Network Professional Learning
http://www.merit.edu/learning
learning@merit.edu
=========================================================
Other upcoming events:
Merit Member Conference Pre-Conference Workshops
June 10, Ann Arbor
http://www.merit.edu/events/mmc/workshops.php
--Medianet Architecture: Design Best Practices for a
Media Ready Network
--The Producers in the Library: Production & Development
at Ann Arbor District Library
--IP Video Surveillance: Campus Physical Security
Architecture and Design Practices
Merit Member Conference
June 11-12, Ann Arbor
http://www.merit.edu/mmc
NANOG 46
June 14-17, Philadelphia, PA
http://www.nanog.org
Virtualization: Leveraging Today's Possibilities
June 25, Ann Arbor
http://www.merit.edu/learning/virtualization
-----------------------------------------------------------------
TO UNSUBSCRIBE:
This list is used for occasional announcements of Merit
Network's Professional Learning events. You have been included
because we believe you may have interest in these events. If
you don't want to receive future announcements, please send
email to majordomo@merit.edu with the text:
unsubscribe event-announcements
------------------------------------------------------------------
|
