The goal of this course is to provide developers with the principles and best practices for writing secure code and stopping malicious hackers in their tracks. The contents of the course reveal proven principles, strategies, and coding techniques. Numerous examples will be given to the students used in an effort to find solution to the industry's toughest security problems by providing sample code in several languages. This course will also cover information about threat modeling, designing a security process, international issues, file-system issues, adding privacy to applications, and performing security code reviews. It also includes enhanced coverage of buffer overruns, Microsoft .NET security and Microsoft ActiveX development, plus practical checklist for developers, testers, and program managers. Course includes: The Need for Secure Systems; The Proactive Security Development Process: Security Principles to Live By; Threat Modeling; The Buffer Overrun: Determining Appropriate Access Control; Running with Least Privilege; Cryptographic Foibles; Protecting Secret Data; Database Input Issues; Web-Specific Input Issues; Internationalization Issues; Protecting Against Denial of Service Attacks; Writing Secure .NET Code; Performing a Security Code Review; General Good Practices.