ECSP - EC-Council Certified Secure Programmer JAVA

Course Description

The ECSP Java program is a comprehensive course that provides hands-on training covering Java security features, policies, strengths, and weaknesses. It helps developers understand how to write secure and robust Java applications, and provides advanced knowledge in various aspects of secure Java development that can effectively prevent hostile and buggy code.

Course Details

Key Features in ECSP JAVA

Introduces Java security architecture and common security threats
Secure software development lifecycle (SDLC)
Common threats and mitigation approaches
Detailed coverage of input validation, output encoding, authentication and authorization, and other secure coding practice
Thorough understanding of Sandbox, JVM, Bytecode Verifier, Security Manager, and JSF (Java Security Framework)

Who Should Attend?

The ECSP certification is intended for programmers who are responsible for designing and building secure Windows/Web based applications with JAVA Framework. It is designed for developers who have JAVA development skills.

Exam Information

Number of questions: 50
Passing score : 70%
Test duration : 2 Hours
Test format : Multiple choice
Test delivery : EC-Council exam center
Exam prefix : 312-94

Course Content

Java security principles and secure coding practices Java Security Platform, Sandbox, JVM, Class loading, Bytecode verifier, Security Manager, security policies, and Java Security Framework
Secure SDLC, threat modelling, software security frameworks, and secure software architectures
Best practices and standards and guidelines for secure file input/output and serialization
Java input validation techniques, validation errors, and best practices
Java exceptions, erroneous behaviours, and the best practices to handle or avoid them
Secure authentication and authorization processes
Java Authentication and Authorization Service (JAAS), its architecture, Pluggable Authentication Module (PAM) Framework, and access permissions through Java Security Model
Secure Java concurrency and session management
Core security coding practices of Java Cryptography that includes Encryption, Key Generator and implementation of Cipher Class
Digital signatures, secret keys, and key management
Various Java application vulnerabilities

Related Courses

ECSP - EC-Council Certified Secure Programmer .NET

Total Seats:

Course Level:

Beginner

Duration :

40 Hours