PPPO Masterclass 7 - Cyber Security Secure Coding 2014
Updated as at 21st July 2014
In the productisation journey, good quality
software products need to come with good security. With this aim in mind, the 7th
Masterclass held on 2nd July 2014 focused on web security starting
at the point of good software development practices. This highly intensive and
interactive masterclass was followed by a 2-day workshop on 3rd and
4th July 2014 that provided essential application security training
for web application, web service and mobile software developers and architects.
Mr. Andrew Chow, Chairman of SiTF Productivity and
Productisation Program Office delivered the opening address at the masterclass.
Mr. Jim Manico, billed as the Secure Coding Rockstar took the workshop
participants on a journey of discovery in the world of secure coding. The workshop was a combination of lecture and
code review. Participants were shown what are the security lapses in the code
level and were recommended strategies and solutions to guard against them. The solutions cover the major programming
languages such as Java, .net, PHP, HTML 5 and more.
Participants learnt the most common threats against
applications. More importantly, participants learnt how to design and code
secure web solutions via defense-based code samples, an exploration into the
use of third-party security libraries and secure design review. Jim also
highlighted production quality API’s from various languages, frameworks, and
3rd party libraries that provide production quality and scalable security
Securing cyberspace is not the sole responsibility
of anyone – we all share the same global infrastructure and we all share the
responsibility to protect it. Jim came to the masterclass and workshop as a
speaker. Participants learnt from him, worked with him and he left after the
workshop as our friend and mentor on cyber security.