Cyberattacks are becoming more commonplace and the Open Web Application Security Project (OWASP), estimates 94% of sites have flaws in their access control alone. Attacks evolve to work around new defenses, and defenses must evolve to remain effective. Developers need to understand the fundamentals of attacks and defenses in order to comprehend new techniques as they become available.
- Understand common coding vulnerabilities and how to avoid them
- Configure services, such as databases and web servers, to minimize the risk of attack
- Implement secure methods for password management, authentication, and authorization
- Safely manage requests to and from external web sites
- Establish a framework for modelling and assessing risks
Autorentext
Matthew Baker is the Head of Scientific Software and Data Management at ETH Zurich, Switzerland's leading science and technology university, He leads a team of engineers developing custom software to support STEM research projects, as well as teaches computer science short courses. Having over 25 years of experience developing software, he has worked as a developer, systems administrator, project manager and consultant in various sectors from banking and insurance, science and engineering, to military intelligence.