Secure Code Training - SCT21

Starts
Ends
(Timezone - UTC)
Description

Producing secure code for applications is a key aspect of protecting GÉANT applications and systems. With the move towards multi-domain systems and services there is a greater emphasis on securing these multi-domain systems as well as ensuring secure deployment of them. The Secure Coding Training focuses on areas that affect the development and analysis of application's source code. Secure code training is a GN4.3 project activity led by WP9-T2 Software Governance and Support team.

More

Participants
  • Ambra Nika
  • Andreas Theodorou
  • Benjamin Lojack
  • Desa Avxhi
  • Halil Adem
  • Ian Galpin
  • igli draci
  • +8
    • 10:00 AM 2:00 PM
      Day 1 4h

      Welcome and introductions to SCT21
      WP9T2 - Software Governance for the GÉANT community
      Invitation to School fo Software Engineering 2021
      Secure Development Life Cycle and Continuous Integration
      ASVS reminder and introduction to Day 2

    • 10:00 AM 2:00 PM
      Day 2 4h

      Writing Hacker proof code - Authentication
      Writing Hacker proof code - Authorization and Access Control
      Writing Hacker proof code - Error handling and logging verification

    • 10:00 AM 2:00 PM
      Day 3 4h

      Web application vulnerabilities workshop

    • 10:00 AM 2:00 PM
      Day 4 4h

      Static Application Security Testing tools review
      HackMe contest
      HackMe - evaluations and solutions
      Summary and closing