• Classroom
  • Online, Instructor-Led
Course Description

This course examines issues involved in protecting web-based applications from external threats while safeguarding customer privacy and accessibility. Students examine external threats to an organization’s systems and develop strategies that support systems and business goals.

Learning Objectives

  1. Given a web server of any type, discuss the attacks most likely to be encountered.
  2. Given an organization with a need for a security, be able to describe how firewalls work and the different types of firewalls.
  3. Given an organization with a need for a firewall, select the most appropriate firewall for that organization.
  4. Given an organization with a need for security, explain the need and purpose for an intrusion detection system.
  5. Be able to discuss data encryption, particularly SSL.
  6. Be able to discuss and evaluate the various methods of implementing virtual private networks.
  7. Given an organization with a need for security, discuss methods of defending against common attacks.
  8. Given an organization with a web server, discuss operating system hardening, with particular emphasis on hardening the web server.
  9. Given an organization with a web server, be able to discuss security policies, particularly as they relate to the web server.
  10. Given an organization with a web server, be able to assess and evaluate the security of the system and implement appropriate security models in setting up the web server.
  11. Implement specific methods for improving security on Microsoft IIS.
  12. Implement specific methods for improving security on the Apache Web Server.

Framework Connections