Microsoft eLearning Courses on Security

By way of Dana Epp (pointing at Michael Howard's post):

I noticed Michael mention some new e-learning clinics on security that Microsoft is hosting. I was kinda interested in the developer focused one which is Clinic 2806: Microsoft® Security Guidance Training for Developers.

Look at this list of topics for Clinic 2806:

  • Essentials of Application Security

    • Welcome to Essentials of Application Security
    • The Importance of Application Security
    • Secure Application Development Practices
    • Security Technologies
    • Secure Development Guidelines
    • Summary

  • Writing Secure Code - Best Practices
    • Welcome to Writing Secure Code - Best Practices
    • Secure Development Process
    • Threat Modeling
    • Risk Mitigation
    • Security Best Practices
    • Summary

  • Writing Secure Code - Threat Defense
    • Welcome to Writing Secure Code - Threat Defense
    • The Need for Secure Code
    • Defending Against Memory Issues
    • Defending Against Arithmetic Errors
    • Defending Against Cross-Site Scripting
    • Defending Against SQL Injection
    • Defending Against Canonicalization Issues
    • Defending Against Cryptography Weaknesses
    • Defending Against Unicode Issues
    • Defending Against Denial of Service
    • Summary

  • Implementing Application Security Using the Microsoft .NET Framework
    • Welcome to Implementing Application Security Using the Microsoft .NET Framework
    • .NET Framework Security Features
    • Code-Access Security
    • Role-Based Security
    • Cryptography
    • Securing ASP.NET Web Applications
    • Securing ASP.NET Web Services
    • Summary

This is a great way to introduce your application developers to the basics of security.  I have listened to some of the sessions, and this is great stuff.  And the best part, its free!  Great job, Microsoft!

Published Wednesday, May 12, 2004 7:39 PM by RHurlbut
Filed under: , , , , , , , ,

Comments

No Comments