Skip To Content

0 items in cart

View Cart | Checkout

Web Security 2.0

XACS241

Delivery Options: Online

Course Description

In addition to reviewing traditional web application security threats (such as XSS, XSRF, and SQL injection), this course provides depth in security issues that arise specifically in Web 2.0 applications that take advantage of AJAX, XmlHttpRequest, mash-ups and frameworks that help automate the development of Web 2.0 applications such as GWT and Dojo. The course also builds on knowledge of traditional cross-domain threats and covers same.-origin-policy (SOP) violations that can occur due to DNS rebinidng, timing, and user tracking attacks. A hands-on, 1 day lab in which students conduct advanced SQL injection attacks against a Facebook application, and then use a web application firewall (WAF) is included with the course.

Topics Include

  • Web 1.0 Refresher / Overview of web technologies (cookies, Javascript, caching, session mgmt)
  •  XHR and Web frameworks (GWT, Gojo, etc)
  • Security threats: CSS, XSRF, frames, SQL injection
  • SOP violations: user tracking, timing, DNS rebinding

Course Notes

Online Lab: Facebook Applications

Degrees and Certificates

Recommended
We recommend you have the equivalent of a BS in Computer Science and a background in security.

We HIGHLY recommend that you take this course, Software Security Foundations Certificate (XACS101)as the first course within the Stanford Advanced Computer Security Certificate Program, because it provides the fundamentals necessary for the subsequent courses in the program.

On-Demand Webinars

View our free On-Demand Webinars to get a preview of the courses we offer.


COURSE SECTION

XACS241 - 006 Online Available Autumn 2009-10

Enroll in this Section

Day Date Time Location
Tue   Aug 25 to Dec 31, 2009 Anytime Online
Tue   Sep 01 6:00PM to 7:00PM Online

Course Access
90 day access to the online course starts upon payment.

Course Materials
Course materials are available for download from the online videos page to allow for printing and review.

Final Exam:
Online participants are asked to complete a final exam at the end of each course to maintain the integrity of the program. A completion certificate will be mailed to participants when they pass the exam.

Course Evaluation:
It is required that participants complete the course evaluation once they have passed the final exam.

Units: 1.0 CEUs

Instructor(s):
Dan Boneh, Neil Daswani, John Mitchell

Tuition Options:
Online Course $495.00 ?

Section Fee(s):
Stanford University Transcript (CEU) $75.00 ?

XACS241 - 007 Online Available Winter 2009-10

Enroll in this Section

Day Date Time Location
Tue   Jan 01 to Mar 31, 2010 Anytime Online

Course Access
90 day access to the online course starts upon payment.

Course Materials
Course materials are available for download from the online videos page to allow for printing and review.

Final Exam:
Online participants are asked to complete a final exam at the end of each course to maintain the integrity of the program. A completion certificate will be mailed to participants when they pass the exam.

Course Evaluation:
It is required that participants complete the course evaluation once they have passed the final exam.

Units: 1.0 CEUs

Instructor(s):
Dan Boneh, Neil Daswani, John Mitchell

Tuition Options:
Online Course $495.00 ?

Section Fee(s):
Stanford University Transcript (CEU) $75.00 ?

XACS241 - 008 Online Available Spring 2009-10

Enroll in this Section

Day Date Time Location
Tue   Apr 01 to Jun 30, 2010 Anytime Online

Course Access
90 day access to the online course starts upon payment.

Course Materials
Course materials are available for download from the online videos page to allow for printing and review.

Final Exam:
Online participants are asked to complete a final exam at the end of each course to maintain the integrity of the program. A completion certificate will be mailed to participants when they pass the exam.

Course Evaluation:
It is required that participants complete the course evaluation once they have passed the final exam.

Units: 1.0 CEUs

Instructor(s):
Dan Boneh, Neil Daswani, John Mitchell

Tuition Options:
Online Course $495.00 ?

Section Fee(s):
Stanford University Transcript (CEU) $75.00 ?

XACS241 - 009 Online Available Summer 2009-10

Enroll in this Section

Day Date Time Location
Tue   Jul 01 to Aug 31, 2010 Anytime Online

Course Access
90 day access to the online course starts upon payment.

Course Materials
Course materials are available for download from the online videos page to allow for printing and review.

Final Exam:
Online participants are asked to complete a final exam at the end of each course to maintain the integrity of the program. A completion certificate will be mailed to participants when they pass the exam.

Course Evaluation:
It is required that participants complete the course evaluation once they have passed the final exam.

Units: 1.0 CEUs

Instructor(s):
Dan Boneh, Neil Daswani, John Mitchell

Tuition Options:
Online Course $495.00 ?

Section Fee(s):
Stanford University Transcript (CEU) $75.00 ?

XACS241 - 010 Online Available Autumn 2010-11

Enroll in this Section

Day Date Time Location
Tue   Sep 01 to Dec 31, 2010 Anytime Online

Course Access
90 day access to the online course starts upon payment.

Course Materials
Course materials are available for download from the online videos page to allow for printing and review.

Final Exam:
Online participants are asked to complete a final exam at the end of each course to maintain the integrity of the program. A completion certificate will be mailed to participants when they pass the exam.

Course Evaluation:
It is required that participants complete the course evaluation once they have passed the final exam.

Units: 1.0 CEUs

Instructor(s):
Dan Boneh, Neil Daswani, John Mitchell

Tuition Options:
Online Course $495.00 ?

Section Fee(s):
Stanford University Transcript (CEU) $75.00 ?




Back To Top