View the text version of Merit Network web site.
 Merit Network
Search Merit Site | Text Version | Site Map | Log In




About Merit   Services   Network   Support & Resources   Network Research   News   Events   Home
News and Press Releases - Merit Network, Inc.
Featured Stories

Merit Network Blogs

News & Press Release Archive

Merit News & Events Widgets

Annual Report

Press Release Requests

RSS News

Newsletters

Contact Us

Merit History

Merit News Home





Print this.
Print This
Send This.
Send This

Announcing SANS 422: Web Application Security Essentials

November 25, 2008

By Andy Rosenzweig

 Merit Network is pleased to host an interactive video presentation of the SANS Institute's Security 422 course, "Web Application Security Essentials." The workshop will be held Monday through Wednesday, January 12-14, 2009 at the MITC bulding in Ann Arbor. The workshop will be of value to anyone interested in securing Web applications against common threats.

In this innovative presentation, the course will be delivered by a SANS instructor via interactive teleconference to several participating sites across the U.S. A full course description appears below.

The registration fee for attendees from educational institutions and state and local governments is $995, a savings of over 60% compared to the standard price of $2,764 when delivered in a classroom setting. This is a unique opportunity to engage in very high-quality security training at a tremendous savings. In accordance with the SANS Institute's policies, the reduced price is available only to attendees from educational institutions and state and local governments. Others may attend for the retail price of $2,764.

Registration is now available at:
http://www.merit.edu/events/archive/specialevents/sans422/

Details about the course

Web Application Security Essentials is a three-day hands-on, action-packed course covering the defensive strategies for Web applications against current and future attacks. This course will help you understand the fundamental reasons behind the Web vulnerabilities which will then enable you to properly defend your organization's Web assets. Mitigation strategies from an infrastructure, architecture, and coding perspective will be discussed alongside real-world implementations that really work. The key security problem areas of Web applications will be covered, as well as new technology areas such as AJAX and Web Services.

To maximize the benefit for a wider range of audiences, the discussions in this course will be programming language agnostic. Focus will be maintained on security strategies rather than coding level implementation. Specific topic to be covered include:
  • Securing Web Application Infrastructures
  • Cryptography
  • Authentication
  • Access Control
  • Session Mechanism Protection
  • Web Application Logging
  • Input Issues and Proper Validation
  • SQL Injection Defense
  • Cross-Site Scripting Defense
  • Phishing Defense
  • HTTP Response Splitting and Defense
  • Cross-Site Request Forgery Defense
  • AJAX Security
  • Web Services Security
This course is intended for anyone tasked with implementing secure Web applications. Web Application Security Essentials is particularly well suited to application security analysts, developers, application architects, pen testers who are interested in recommending proper mitigations to security issues, and infrastructure security professionals who have an interest in better defending their Web applications.

For more information please contact .





Go to the Merit Network News Archive.


Home » News » News & Press Release Archive


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Widget | Merit Network Home


Copyright © 2009 Merit Network, Inc.
1000 Oakbrook Drive, Suite 200, Ann Arbor, Michigan 48104-6794
Phone: (734) 527-5700    Fax: (734) 527-5790    E-mail: