Securing Web Applications, Services and Servers Training

Level: Intermediate
RATING: 4.7/5 4.67/5 Based on 347 Reviews

This Securing Web Applications, Services & Servers course provides in-depth, hands-on experience securing Web-based applications and the servers they run on. You will gain in-depth experience securing web services, and learn how to integrate robust security measures into the web application development process by adopting proven architectures and best practices.

This web service security course includes the OWASP top 10 most critical web application security risks and how to remediate them.

Key Features of this Web Service Security Training:

  • After-course instructor coaching benefit
  • Learning Tree end-of-course exam included
  • After-course computing sandbox included

You Will Learn How To:

  • Implement and test secure web applications in your organization
  • Identify, diagnose, and remediate the OWASP top ten web application security risks
  • Configure a web server to encrypt web traffic with HTTPS
  • Protect Ajax-powered applications and prevent JSON data theft
  • Secure XML web services with WS-Security

Certifications/Credits:

CompTIA

Choose the Training Solution That Best Fits Your Individual Needs or Organizational Goals

LIVE, INSTRUCTOR-LED

In Class & Live, Online Training

  • 4-day instructor-led training course
  • One-on-one after-course instructor coaching
  • After-course computing sandbox
  • Tuition can be paid later by invoice -OR- at the time of checkout by credit card
View Course Details & Schedule

Standard $3285

Government $2890

RESERVE SEAT

PRODUCT #940

TRAINING AT YOUR SITE

Team Training

  • Bring this or any training to your organization
  • Full - scale program development
  • Delivered when, where, and how you want it
  • Blended learning models
  • Tailored content
  • Expert team coaching

Customize Your Team Training Experience

CONTACT US

Save More On Training with FlexVouchers – A Unique Training Savings Account

Our FlexVouchers help you lock in your training budgets without having to commit to a traditional 1 voucher = 1 course classroom-only attendance. FlexVouchers expand your purchasing power to modern blended solutions and services that are completely customizable. For details, please call 888-843-8733 or chat live.

In Class & Live, Online Training

  • Jan 22 - 25 ( 4 Days)
    9:00 AM - 4:30 PM EST
    New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

  • Feb 26 - Mar 1 ( 4 Days)
    9:00 AM - 4:30 PM EST
    Ottawa / Online (AnyWare) Ottawa / Online (AnyWare) Reserve Your Seat

  • Mar 12 - 15 ( 4 Days)
    9:00 AM - 4:30 PM EDT
    Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

  • Apr 9 - 12 ( 4 Days)
    9:00 AM - 4:30 PM EDT
    Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

  • Jul 16 - 19 ( 4 Days)
    9:00 AM - 4:30 PM EDT
    New York / Online (AnyWare) New York / Online (AnyWare) Reserve Your Seat

  • Aug 13 - 16 ( 4 Days)
    9:00 AM - 4:30 PM EDT
    Ottawa / Online (AnyWare) Ottawa / Online (AnyWare) Reserve Your Seat

  • Sep 10 - 13 ( 4 Days)
    9:00 AM - 4:30 PM EDT
    Herndon, VA / Online (AnyWare) Herndon, VA / Online (AnyWare) Reserve Your Seat

  • Oct 15 - 18 ( 4 Days)
    9:00 AM - 4:30 PM EDT
    Rockville, MD / Online (AnyWare) Rockville, MD / Online (AnyWare) Reserve Your Seat

Guaranteed to Run

When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time, location — will run. Guaranteed.

Important Web Service Security Course Information

  • Recommended Experience

    Basic knowledge of Web application operation and Web server administration are assumed. You should have knowledge at the level of Course 470, Developing a Website. For example, you should have an understanding of Web browser/server operation, session management and basic HTML. In addition, experience with server-side Web application development and security knowledge is helpful.

Web Service Security Course Outline

  • Setting the Stage

    • Defining threats to your web assets
    • Surveying the legal landscape and privacy issues
  • Establishing Security Fundamentals

    Modeling web security

    • Achieving Confidentiality, Integrity and Availability (CIA)
    • Performing authentication and authorization

    Encrypting and hashing

    • Distinguishing public– and private–key cryptography
    • Verifying message integrity
  • Augmenting Web Server Security

    Configuring security for HTTP services

    • Managing software updates
    • Restricting HTTP methods

    Securing communication with SSL/TLS

    • Obtaining and installing server certificates
    • Enabling HTTPS on the web server

    Detecting unauthorized modification of content

    • Configuring permissions correctly
    • Scanning for file–system changes
  • Implementing Web Application Security

    Employing OWASP resources

    • The Open Web Application Security Project (OWASP) top ten
    • Remediating identified vulnerabilities

    Securing database and application interaction

    • Uncovering and preventing SQL injection
    • Defending against an insecure direct object reference

    Managing session authentication

    • Protecting against session ID hijacking
    • Blocking cross–site request forgery

    Controlling information leakage

    • Displaying sanitized error messages to the user
    • Handling request and page faults

    Performing input validation

    • Establishing trust boundaries
    • Removing the threat of Cross–Site Scripting (XSS)
    • Exposing the dangers of client–side validation
    • Implementing robust server–side input validation with regular expressions
  • Enhancing Ajax Security

    Ajax features

    • Identifying core Ajax components
    • Exchanging information asynchronously

    Assessing risks and evaluating threats

    • Managing unpredictable interactions
    • Exposing Ajax vulnerabilities
  • Securing XML Web Services

    Diagnosing XML vulnerabilities

    • Identifying nonterminated tags and field overflows
    • Uncovering web service weaknesses

    Protecting the SOAP message exchange

    • Validating input with an XML schema
    • Encrypting exchanges with HTTPS
    • Implementing WS–Security with a framework
  • Scanning Applications for Weaknesses

    Operating and configuring scanners

    • Matching patterns to identify faults
    • "Fuzzing" to discover new or unknown vulnerabilities

    Detecting application flaws

    • Scanning applications remotely
    • Finding vulnerabilities in web applications with OWASP and third–party penetration testing tools
  • Best Practices for Web Security

    Adopting standards

    • Reducing risk by implementing proven architectures
    • Handling personal and financial data

    Managing network security

    • Modeling threats to reduce risk
    • Integrating applications with your network architecture

Team Training

Web Service Security Training FAQs

  • What is web service security?

    Applies security to web services. It is an extension to SOAP and a member of the web service specifications.

  • Can I learn web service security online?

    Yes! We know your busy work schedule may prevent you from getting to one of our classrooms which is why we offer convenient online training to meet your needs wherever you want. This course is available in class and live online.

Questions about which training is right for you?

call 888-843-8733
chat Live Chat




100% Satisfaction Guaranteed

Your Training Comes with a 100% Satisfaction Guarantee!*

  • If you are not 100 % satisfied, you pay no tuition!
  • No advance payment required for most products.
  • Tuition can be paid later by invoice - OR - at the time of checkout by credit card.

*Partner-delivered courses may have different terms that apply. Ask for details.

New York / Online (AnyWare)
Ottawa / Online (AnyWare)
Herndon, VA / Online (AnyWare)
Rockville, MD / Online (AnyWare)
New York / Online (AnyWare)
Ottawa / Online (AnyWare)
Herndon, VA / Online (AnyWare)
Rockville, MD / Online (AnyWare)
Preferred method of contact:
Chat Now

Please Choose a Language

Canada - English

Canada - Français