Robert Hurlbut Blog

Thoughts on Software Security, Software Architecture, Software Development, and Agility

Microsoft eLearning Courses on Security

Wednesday, May 12, 2004 Comments

 .NET  ADO.NET  ArchitecturePatterns  ASP.NET  CLR  COMPlus EnterpriseServices  Database Development  Security  Web Services 
Share:   Share on LinkedIn    Share on Twitter    Share on Facebook   

By way of Dana Epp (pointing at Michael Howard's post):

I noticed Michael mention some new e-learning clinics on security that Microsoft is hosting. I was kinda interested in the developer focused one which is Clinic 2806: Microsoft® Security Guidance Training for Developers.

Look at this list of topics for Clinic 2806:

  • Essentials of Application Security

    • Welcome to Essentials of Application Security
    • The Importance of Application Security
    • Secure Application Development Practices
    • Security Technologies
    • Secure Development Guidelines
    • Summary

  • Writing Secure Code - Best Practices
    • Welcome to Writing Secure Code - Best Practices
    • Secure Development Process
    • Threat Modeling
    • Risk Mitigation
    • Security Best Practices
    • Summary

  • Writing Secure Code - Threat Defense
    • Welcome to Writing Secure Code - Threat Defense
    • The Need for Secure Code
    • Defending Against Memory Issues
    • Defending Against Arithmetic Errors
    • Defending Against Cross-Site Scripting
    • Defending Against SQL Injection
    • Defending Against Canonicalization Issues
    • Defending Against Cryptography Weaknesses
    • Defending Against Unicode Issues
    • Defending Against Denial of Service
    • Summary

  • Implementing Application Security Using the Microsoft .NET Framework
    • Welcome to Implementing Application Security Using the Microsoft .NET Framework
    • .NET Framework Security Features
    • Code-Access Security
    • Role-Based Security
    • Cryptography
    • Securing ASP.NET Web Applications
    • Securing ASP.NET Web Services
    • Summary

This is a great way to introduce your application developers to the basics of security.  I have listened to some of the sessions, and this is great stuff.  And the best part, its free!  Great job, Microsoft!

Share:   Share on LinkedIn    Share on Twitter    Share on Facebook