Secure Coding in Spring Framework
Offered By: Pluralsight
Course Description
Overview
Learn about security vulnerabilities in Spring applications and how to mitigate them effectively, making your applications resilient against potential threats.
Learning how to securely code in Spring will not only enhance your own development skills, but it will drastically reduce potential security incidents within your application. In this course, Securing Coding in the Spring Framework, you'll address the critical concern of security in Spring-based applications, learning how to fortify them against various common threats. First, you’ll explore the OWASP top 10 security threats, in the specific context of Spring application development. Next, you’ll analyze and identify multiple examples of these threats, such as mis-implemented access control, weak cryptography, injection vulnerabilities, and more. Finally, you’ll learn how to refactor your Spring application to mitigate these threats by leveraging the framework to its full potential. By the end of this course, you’ll have the skills and knowledge needed to ensure the security of your Spring applications, making them resilient against common security threats.
Learning how to securely code in Spring will not only enhance your own development skills, but it will drastically reduce potential security incidents within your application. In this course, Securing Coding in the Spring Framework, you'll address the critical concern of security in Spring-based applications, learning how to fortify them against various common threats. First, you’ll explore the OWASP top 10 security threats, in the specific context of Spring application development. Next, you’ll analyze and identify multiple examples of these threats, such as mis-implemented access control, weak cryptography, injection vulnerabilities, and more. Finally, you’ll learn how to refactor your Spring application to mitigate these threats by leveraging the framework to its full potential. By the end of this course, you’ll have the skills and knowledge needed to ensure the security of your Spring applications, making them resilient against common security threats.
Syllabus
- Course Overview 1min
- A01 - Common Broken Access Control Attack Vectors and Mitigation in Spring Applications 37mins
- A01 - Managing Access Control with Roles 34mins
- A01 - Managing Access Control with Authorities and Role Hierarchies 29mins
- A01 - Defence-in-depth with Method-level Security and Permissions 38mins
- A02 - Cryptographic Failures in Transit 31mins
- A02 - Cryptographic Failures with Passwords 24mins
- A03 - Injection Vulnerabilities in Spring Applications 27mins
- A04 - Insecure Design 18mins
- A05 - Security Misconfiguration in Spring Applications 32mins
- A06 - Vulnerable and Outdated Components 16mins
- A07 - Combatting Identification and Authentication Failures in Spring Framework 36mins
- A07 - Multifactor Authentication in Spring Framework 45mins
- A08 - Software and Data Integrity Failures 17mins
- A09 - Security Logging and Monitoring Failures 32mins
- A10 - Server-Side Request Forgery (SSRF) in Spring Applications 18mins
Taught by
Andrew Morgan
Related Courses
Secure Coding PracticesUniversity of California, Davis via Coursera Secure Coding: Identifying and Mitigating XML External Entity (XXE) Vulnerabilities
Pluralsight Secure Coding: Preventing Broken Access Control
Pluralsight Developing Secure Software
LinkedIn Learning Programming Foundations: Secure Coding
LinkedIn Learning