Loading ...
Sorry, an error occurred while loading the content.

OWASP Summit Java training course

Expand Messages
  • lucasfbr
    Hello all, if you deal with Java-based web applications you might be interested in attending OWASP Summit
    Message 1 of 1 , Oct 20, 2008
    View Source
    • 0 Attachment
      Hello all,

      if you deal with Java-based web applications you might be interested
      in attending OWASP Summit
      (https://www.owasp.org/index.php/OWASP_EU_Summit_2008) and
      specifically to attend the "Secure programming with Java" training
      session
      (https://www.owasp.org/index.php/OWASP_EU_Summit_2008_Training#Secure_Programming_with_Java).

      This training class will present best practices of secure programming
      in the Java language. It includes Java specific practices (i.e. how to
      avoid problems that arise from the compilation of Java source code to
      the bytecode language used by the JVM) and practices that may arise in
      other programming languages (with exemples in Java). Some tools that
      may be used to verify the security of Java code and systems will be
      demonstrated.

      The topics include a quick overview of the OWASP Top 10, in order to
      contextualize the practices presented, and several best practices
      aimed at the different software layers. At the presentation layer, we
      focus on input validation, access control issues and dealing with
      exceptions. At the business objects layer, the practices deal with
      cloning and serialization issues. Practices to prevent command
      injection are presented at the persistence layer. Practices that
      should be used throughout all the software are also presented,
      including inputa data validation, class and method visibility, using
      and storing secrets, dealing with inner classes, overflows and boxing,
      and object initialization.

      Regards,

      Lucas
    Your message has been successfully submitted and would be delivered to recipients shortly.