COD 351: Creating Secure HTML5 Code
This course examines in depth the development of secure HTML5 code. It provides an overview of common HTML5 application vulnerabilities and threats, and presents secure coding best-practices. Upon completion of this class, participants will be able to identify ways in which the expanded attack surface introduced with HTML5 might impact your web applications. Participants will also be able to identify new security features available with HTML5, as well as countermeasures and best practices to mitigate the application’s exposure to attack. The course includes Knowledge Checks, Module Summaries, and links to additional online resources.
Upon completion of this course, participants will be able to:
- Identify the risks and threats associated with HTML5 that impact your web applications, and describe how they can be mitigated. These threats include cross-site scripting (XSS), cross-site request forgery (CSRF), clickjacking, threats to user privacy, and denial of service (DoS).
- Describe the new security features available with HTML5, including Same-origin policy (SOP), content security policy (CSP), and iframe sandboxing
- Describe the best practices for secure implementation of HTML5 forms, offline storage, connectivity features, performance and integration features, and device access features
This course can be customized for Instructor-Led training. Course contents and duration may vary. Contact us for details.