Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

LinkedIn Learning

Programming Foundations: Web Security

via LinkedIn Learning


Learn about the most important security concerns when developing websites, and what you can do to keep your servers, software, and data safe from harm.


  • The importance of security
1. Security Overview
  • What is security?
  • Why security matters
  • What is a hacker?
  • Threat models
  • Total security is unachievable
2. General Security Principles
  • Least privilege
  • Simple is more secure
  • Never trust users
  • Expect the unexpected
  • Defense in depth
  • Security through obscurity
  • Deny lists and allow lists
  • Map exposure points and data passageways
3. Filter Input, Control Output
  • Regulate requests
  • Validate input
  • Sanitize data
  • Label variables
  • Keep code private
  • Keep credentials private
  • Keep error messages vague
  • Smart logging
4. The Most Common Attacks
  • Types of credential attacks
  • Strong passwords
  • URL manipulation and insecure direct object reference (IDOR)
  • SQL injection
  • Cross-site scripting (XSS)
  • Cross-site request forgery (CSRF)
  • Cross-site request protections
  • Cookie visibility and theft
  • Session hijacking
  • Session fixation
  • Remote code execution
  • File upload abuse
  • Denial of service
  • Next steps

Taught by

Kevin Skoglund

Related Courses


Start your review of Programming Foundations: Web Security

Never Stop Learning!

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free