This course is currently in QA.
Introduction to Application Security
Coming December 2017…Watch trailer
About this Course
Welcome to the realm of web security, where millions of dollars and people’s lives are on the line. Well, not in all cases, but some! From protecting static web sites to the most complex of web services and APIs, every web developer should be aware of and adept at writing secure code and building systems that can stand up to the strongest of malicious users. In this course, we will lay the groundwork for what you need to know to get started exploring the vast field of web security, and along the way you will begin to realize that security isn’t about checking boxes, but rather about embedding the thought process and principles of rock-solid security into every line of code you write. First, we will discuss why security matters to you as a web developer, then we will look at data security at an implementation level, then finally we will examine the art of maintaining your websites, apps, and services on a daily basis.
What you'll learn
- Principles of web security
- Why web security matters
- Implementation of data security
- Site security maintenance
Protecting Your Web Apps
Welcome! In this stage, you will learn why security matters, what the broad topic of web security covers, what can happen when you don’t protect your web apps, and how to develop a security-first mindset.
Protecting Data and Keeping Attackers Out
In this stage, we are going to explore how to protect the data flowing through your web apps, what kinds of authentication and authorization strategies exist to only let the right users in, and how to implement TLS for your apps at a high-level. Sit down and buckle-up, because without your user’s data being stored and accessed safely, you’re in for a wild ride if your app’s get compromised.
Maintaining Secure Web Apps
Now that you know the basics behind building secure web apps, you have to maintain your app or service and keep up all the hard work you’ve done so far! For this reason, knowing how and when to patch vulnerabilities in your apps, who to trust when implementing new 3rd-party integrations, how to use automatic tools to secure your site, and what kinds of data storage precautions you might have to be aware of for your given industry are all very important skills to have. In this stage, let’s dive into maintaining your newly secured web apps, and end with resources you should checkout moving forward in your security journey.
After starting out in fine art and moving into graphic design, Alena found her passion for programming over 15 years ago and has never looked back. Alena enjoys community and is excited to introduce people to the wonderful world of PHP and the Portland Tech Community.
When not at her computer, Alena enjoys exploring Portland with her friends and family, including her 3 young children. She also enjoys the Symphony, Cooking, Books, Yarn and Yoga.
Jared is a Computer Security researcher at the US's largest national laboratory in Oak Ridge, TN, where he works on projects ranging from novel security data analytics tools to malware research. He was previously a software security engineer at Cisco System's internal security team and serves as a technical advisor for several Knoxville, TN companies. He roams the so-called "Cyberspace" as @jaredthecoder.