This course can be adapted to the following programming languages: WEB / SPECIFIC TOPIC
Migrating to the cloud introduces immense benefits for companies and individuals in terms of efficiency and costs. With respect to security, the effects are quite diverse, but it is a common perception that using cloud services impacts security in a positive manner. This Application Security in the Cloud training course deals with the various security aspects of cloud computing, starting off from discussing cloud-specific threats and risks, followed by legal and contractual basics, as well as how a cloud application should be audited and evaluated from a security perspective. Core cloud security is discussed in multiple areas: from securing the infrastructure –issues like hardening, configuration, authentication, authorization and identity management –to application security issues as the culmination of the course. The course gives application developers essential knowledge with respect to application security challenges and solutions when developing in a cloud environment.
What the attendee will learn:
- Understand basic concepts of security, IT security and secure coding
- Understand major threats and risks in the cloud domain
- Learn about elementary cloud security solutions
- Understand security concepts of Web services
- Learn about XML security
- Have a practical understanding of cryptography
- Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
- Learn about denial of service attacks and protections
- Learn typical input validation mistakes
- Understand data security challenges in the cloud
- Learn about NoSQL security
- Learn about MongoDB security
- Understand the challenges of auditing and evaluating cloud systems for security
- Learn how to secure the cloud environment and infrastructure
- Learn how to set up and operate the deployment environment securely
- Get sources and further readings on secure coding practices