Call +65 6100 0613

Instructor-Led Classroom Adult Training in Singapore - Learn New Skills to Enhance Your Employability from our SkillsFuture Courses

Secure Coding in Java Course

Building secure software can be challenging and hard. This course provides a detailed explanation of common programming errors in Java and describes how these errors can lead to code that is vulnerable to exploitation. The course concentrates on security issues that are relevant to the Java programming languages and associated libraries.

The course requires basic Java programming skills but does not assume an in-depth knowledge of software security.

The participants would get a working knowledge of common programming errors that lead to software vulnerabilities, how these errors can be exploited and how we can prevent the introduction of these errors. In particular, they will learn how to:

  • Improve the overall security of any Java application
  • Avoid injection attacks, such as SQL injection and XSS
  • Learn when to throw and catch exceptions
  • Avoid I/O vulnerabilities
  • Implement safe serialization and deserialization
  • Use static analysis tools like FindBugs to detect errors


Click here to submit SkillsFuture Credit for Individual

SSG WSG SkillsConnect WDA Absentee Payroll for Company

Course Code: CRS-N-0044448

Course Booking

$298.00

Course Date

Course Time

* Required Fields

Course Cancellation/Reschedule Policy

We reserve the right to cancel or re-schedule the course due to unforeseen circumstances. If the course is cancelled, we will refund 100% to participants.
Note the venue of the training is subject to changes due to class size and availability of the classroom.
Note the minimal class size to start a class is 3 Pax.


Training Grant and Subsidy

Click on this Step by Step SkillsFuture Claim Guide on How to Submit SkillsFuture Claim

Course Details

Module 1 – Introduction and Common Security Issues

  • Why Software Security is important?
  • Difference between defects and vulnerabilities
  • Secure Software Development
  • Common Vulnerabilities and Exposures (CVE)

Module 2 – Language based security in Java and Secure Coding Rules

  • Web Vulnerabilities
  • Difference between C and Java
  • Strong Type Checking and Language based security
  • Secure Coding Standards

Module 3 – Input validation and Injection vulnerabilities

  • SQL Injection
  • Command Injection
  • XML Injection

Module 4 – Object construction, mutation and deserialization

  • Mutable object references
  • Hard coding sensitive information
  • Access modifiers for classes
  • Secure serialization and deserialization

Module 5 – Exceptions, concurrency and I/O

  • Zip bomb
  • File I/O
  • Shared concurrency primitives
  • Secure random numbers

Module 6 – Using static analysis to find bugs

  • Secure testing 
  • Static Analysis
  • Using Findbugs to check security rules in Java

Who Should Attend

  • Cyber Security Staff
  • Network Engineers
  • IT Administrators

Prerequisite

Basic Java is assumed

Trainers

Cyber Security TrainerDr. Asankhaya Sharma is a cyber security expert and technology leader with over a decade of experience in creating security products for industry, academia and open-source community. He is passionate about building high performing teams and taking innovative products to market. He is also an Adjunct Professor at the Singapore Institute of Technology.

He currently leads the R&D function at SourceClear. SourceClear is a software security startup that is focussed on building security tools for software developers. Before that, he was a PhD student affiliated with the Programming Languages and Systems Lab at School of Computing, NUS. His doctoral thesis was on Certified Reasoning for Automated Verification.

Prior to starting his graduate studies, he worked at Microsoft. He was involved in the development of SQL Server 2008 and Visual Studio 2010. He was part of the MSIT Accelerated Professional Experiences program (APEX).

Cyber Security TrainerDr. Sarita Singh received her Ph.D. degree for her work done in the area of Information Security. She is the recipient of the prestigious Infosys fellowship for pursuing her Ph.D. Programme. She has more than twenty-five years of teaching and research experience in Singapore, Malaysia and India in the field of Programming, Information Security, Web-application Development, Computer Networks and Engineering related modules.

She has presented papers at several National and International Conferences and has written articles for magazines. She has authored text-books for Engineering courses as well.

Write Your Own Review

You're reviewing: Secure Coding in Java Course

How do you rate this product? *

  1 star 2 stars 3 stars 4 stars 5 stars
1. Do you find the course meet your expectation?
2. Do you find the trainer knowledgeable in this subject?
3. How do you find the training environment
  • Reload captcha

Tags

Use spaces to separate Subjects. Use single quotes (') for phrases.

You May Be Interested In These Courses