Certified Secure J2EE Developer - PCI DSS, Firewall Rulebase Analysis, AuditPro, Firesec, Security Assessment and Audit Software for all versions of Operating Systems, Databases, Routers, Switches, Windows, Unix, Linux, Oracle, MS SQL, IBM DB2, Cisco PIX, Cyberguard, Netscreen, Checkpoint Firewalls, GFI Languard, in India, Mumbai, Hyderabad, Delhi, Bangalore, Chennai, Kolkatta, UAE, Dubai, Kuwait, Bahrain, Qatar, Saudi Arabia, Malaysia, Singapore, Thailand, Far East, USA, Europe, North America.

Company
- About Us
- Strengths
- Forums
- Contact Us
Training
Careers
Clients
- Testimonials
Partner with us

Quick Links

Training Curriculum

Training Calendar

About Us

e-Learning Curriculum

Certified Secure Java Developer (CSJD™)

The course will present security guidelines and considerations in Java applications development. The participants will learn the basics of application security, how to enforce security on a J2EE application, enabling standard J2EE security mechanisms and other security related issues. In addition, the course presents an overview Client's Security manager, including authentication and authorization implementation.

Objectives of the course

Upon completion of this course, participants will be able to:

Understand the need for security
Understand the security threats
Design and develop secured J2EE applications
Design & develop application using Java's Security API

Who should attend this course?

Java developers wishing to improve their security skills
Development & System Architects wishing to improve their security skills and awareness

Course contents

Session One: Case Studies

Session Two: Threat Modeling

Session Three – Secure Designing

Session Four – Application Security Design Principles

Session Five – Introduction to Web Hacking

Session Six - Hands-on Exercises

Session Seven – Introduction to Java Framework

Module 1: J2EE
Module 2: Struts

Session Eight – J2EE Framework Enforce Security

Session Nine – JVM’s Role Byte Code and Type Safety

Session Ten – Java Language Security and Sandbox Concept

Session Eleven – Authentication and Authorization API’s

Session Twelve – Java Access Control Features

Module 3: java.security.Access Controller
Module 4: Inheritance of Access Control Context
Module 5: java.security.Protection Domain

Session Thirteen – Java Authentication and Authorization Services JAAS

Module 6: Authentication Classes and Interfaces
Module 7: Authorization Classes

Session Fourteen – Cryptography

Module 8: Java Cryptography Architecture
Module 9: Provider Class
Module 10: Security Class and the other related Classes

Session Fifteen – Common Security Mistakes made by the Developers

Module 11: Accessibility and Extensibility
Module 12: Data Validation
Module 13: Serialization and Deserialization and other related mistakes

Session Sixteen – Vulnerabilities Exploited and Counter Measures

Session Seventeen – Database Security

Module 14: Oracle
Module 15: MS SQL