Number of Videos: 8.25 hours - 56 lessonsAuthor: Brian SlettenUser Level:Beginner
Itâs an unfortunate truism that many good developers are bad at software security. They cling to the belief that security is something you can just buy and bolt on, but thatâs not the case. Itâs not that developers want to be bad at security, they just donât know where to start and where they should go. This video offers a clear route.
It begins with a high level overview of todayâs security threats and the organizational strategies used to counter those threats; it details the roles that SSG members, developers, testers and operations personnel must perform in a security focused SDLC; and finishes with a survey of the protocols, tactics, and tools used to optimize security at the physical, network, application, and perimeter levels.
- Understand the goals, costs, and limitations of software security
- Identify fifteen types of security attacks such as WebSocket, SQL injection, and TLS Heartbleed
- Discover six core principles of software security including Defense in Depth and Fail Securely
- Learn about threat modeling using tools like STRIDE, CAPEC, and attack trees
- Recognize the capabilities and limitations of password policies, WAFS, and Firewalls
- Review authentication/authorization techniques like HTTP Digest, OAuth 2 and JWT
- Learn about the CORS, CSP, and HSTS security policies and protocols
Grasshopper, the computational design extension of Rhino 3D, puts power and flexibility in the hands of architects and designers working with highly complex shapes and surfaces. Use the easy-to-grasp visual programming tools in Grasshopper to create 3D models by creating some user-defined rules and parameters. These models can be updated by simply changing the parameters. Authorized Rhino trainer Luis Fraguada introduces the Rhino user to the algorithmic modeling capabilities of Grasshopper in this overview of its core functionality, interface, data types, data collections, and custom components.
Manage research, learning and skills at IT1me. Create an account using LinkedIn to manage and organize your IT knowledge. IT1me works like a shopping cart for information -- helping you to save, discuss and share.