8295  Reviews star_rate star_rate star_rate star_rate star_half

Network Security for Developers

Securing network communication is critical in today's interconnected world. This network security training teaches developers how to leverage cryptographic techniques like hashing, encryption,...

Read More
By Request
Contact Us For Pricing
Duration 3 days
Course Code SEC-150
Available Formats Classroom

Overview

Securing network communication is critical in today's interconnected world. This network security training teaches developers how to leverage cryptographic techniques like hashing, encryption, digital signatures, TLS, and PKI in a TCP/IP environment.

By the end of this training, learners have a solid understanding of network attacks across all OSI layers, from classic attacks like ARP and NDP spoofing to modern threats like DNS cache poisoning. They also learn how to prevent these attacks through secure switch configuration, operating system settings, and proper protocol usage.

Skills Gained

  • Gain a foundational understanding of essential cybersecurity concepts
  • Understand how cryptography supports security
  • Learn the most common attacks from OSI Layer 2 to Layer 7
  • Implement secure protocols and configurations to mitigate attacks
  • Explore various Denial of Service (DoS) attack vectors and how to defend against them
  • Leverage network traffic manipulation tools
  • Understand the principles of secure design and apply them to build robust and resilient network applications

Prerequisites

All learners must have general network application development experience.

Course Details

Training Materials

All attendees receive comprehensive courseware.

Software Requirements

Attendees will not need to install any software on their computers for this class. The class will be conducted in a remote environment that Ascendient Learning will provide; students will only need a local computer with a web browser and a stable Internet connection. Any recent version of Microsoft Edge, Mozilla Firefox, or Google Chrome will work well.

Outline

  • Cyber Security Basics
    • What is security?
    • Threat and risk
    • Cyber security threat types – the CIA triad
    • Cyber security threat types – the STRIDE model
    • Consequences of insecure software
    • Constraints and the market
    • The dark side
  • Cryptography for Developers
    • Cryptography basics
    • Elementary algorithms
      • Random number generation
      • Hashing
      • Hash algorithms for password storage
    • Confidentiality protection
      • Symmetric encryption
      • Asymmetric encryption
      • Combining symmetric and asymmetric algorithms
      • Key exchange and agreement
    • Integrity protection
      • Authenticity and non-repudiation
      • Message Authentication Code (MAC)
  • Network Security
    • Network security overview
    • The communication layers
    • Threats against TCP/IP
    • The Data Link layer
      • ARP spoofing and ARP poisoning
      • Lab – ARP spoofing
      • Protecting against ARP spoofing
      • Attacks against the Spanning Tree Protocol
      • Mitigating Spanning Tree Protocol attacks
      • MAC flooding and MAC table overflow
      • Port stealing
      • Port protection
      • Data link attacks and IPv6
      • Lab – IPv6 NDP spoofing
      • DHCP threats
      • Lab – DHCP starvation
      • Protecting against DHCP attacks
      • DHCPv6 security
      • VLAN issues
      • Securing VLANs
      • Sniffing
      • Protecting your network against sniffing and MitM
    • The network layer
      • Spoofing IP addresses
      • Protecting against IP spoofing
      • IP fragmentation and the teardrop attack
      • IPv6-specific attacks and defenses
      • Smurf attack against ICMP
      • Lab – Smurf attack
      • Case study – Ping of death
      • Redirecting ICMP – route hijacking
      • Lab – Route hijacking
      • Black hole attacks and selective forwarding in ad hoc networks
      • Attacks against ICMPv6
      • Routing protocol threats
      • Securing routing protocols
      • IPsec overview
      • IPsec usage scenarios and typical mistakes
      • IPsec cryptographic requirements
    • The transport layer
      • The TCP protocol
      • The UDP protocol
      • SYN flooding
      • Lab – SYN flooding
      • Protecting against SYN floods
      • UDP flooding
      • TCP session hijacking and other attacks
      • Fingerprinting via TCP, UDP, and ICMP
      • Lab – Fingerprinting and service detection
      • Firewalls and IDS
      • Lab – Using a NIDS
    • The application layer
      • The Domain Name System
      • DNS cache poisoning
      • Lab – DNS cache poisoning
      • DNS rebinding
      • DNS amplification
      • DoS targeting DNS
      • Securing DNS systems
      • Lab – DNSSEC
      • Case study – MaginotDNS attack
      • Secure protocols
      • Securing email protocols
      • Web application firewalls and IDS
    • Transport security
      • The TLS protocol
      • Securing HTTP
  • Denial of Service
    • Flooding
    • Resource exhaustion
    • Sustained client engagement
    • Infinite loop
    • Case study – DoS against Tesla GUI via malicious web page
    • Economic Denial of Sustainability (EDoS)
    • Amplification
      • Some amplification examples
    • Algorithmic complexity issues
      • Regular expression denial of service (ReDoS)
      • Hash table collision
  • Security by Design
    • Secure design principles of Saltzer and Schroeder
      • Economy of mechanism
      • Fail-safe defaults
      • Complete mediation
      • Open design
      • Separation of privilege
      • Least privilege
      • Least common mechanism
      • Psychological acceptability
      • Additional principles
  • Wrap Up
    • Secure coding principles
      • Principles of robust programming by Matt Bishop
    • And now what?
      • Software security sources and further reading
      • Network security resources
Read Less

Schedule

Upcoming Course Dates

There are currently no scheduled dates for this course. If you are interested in this course, contact us with the form below.

Contact Information
Address

FAQ

Does the course schedule include a Lunchbreak?

Classes typically include a 1-hour lunch break around midday. However, the exact break times and duration can vary depending on the specific class. Your instructor will provide detailed information at the start of the course.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does Ascendient Learning deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

What does vendor-authorized training mean?

As a vendor-authorized training partner, we offer a curriculum that our partners have vetted. We use the same course materials and facilitate the same labs as our vendor-delivered training. These courses are considered the gold standard and, as such, are priced accordingly.

Is the training too basic, or will you go deep into technology?

It depends on your requirements, your role in your company, and your depth of knowledge. The good news about many of our learning paths, you can start from the fundamentals to highly specialized training.

How up-to-date are your courses and support materials?

We continuously work with our vendors to evaluate and refresh course material to reflect the latest training courses and best practices.

Are your instructors seasoned trainers who have deep knowledge of the training topic?

Ascendient Learning instructors have an average of 27 years of practical IT experience and have also served as consultants for an average of 15 years. To stay current, instructors spend at least 25 percent of their time learning new, emerging technologies and courses.

Do you provide hands-on training and exercises in an actual lab environment?

Lab access is dependent on the vendor and the type of training you sign up for. However, many of our top vendors will provide lab access to students to test and practice. The course description will specify lab access.

Will you customize the training for our company’s specific needs and goals?

We will work with you to identify training needs and areas of growth.  We offer a variety of training methods, such as private group training, on-site of your choice, and virtually. We provide courses and certifications that are aligned with your business goals.

How do I get started with certification?

Getting started on a certification pathway depends on your goals and the vendor you choose to get certified in. Many vendors offer entry-level IT certification to advanced IT certification that can boost your career. To get access to certification vouchers and discounts, please contact info@ascendientlearning.com.

Will I get access to content after I complete a course?

You will get access to the PDF of course books and guides, but access to the recording and slides will depend on the vendor and type of training you receive.

How do I request a W9 for Ascendient Learning?

View our filing status and how to request a W9.

Reviews

Good training. A lot to take in for the short amount of time we have though

Class was easy to sign up for and ExitCertified provided very good communication

The labs and course material gave me valuable insights into cloud security architecture

They were very good. They made sure everyone was able to get into the training and got all of the material needed for class.

ExitCertified gave me some good trainings and I got to learn through doing labs.