'MCP 70-330' tutorials : learn for your exam/certification with this MCP 70-330 training course.

Includes: Multimedia CD-ROMs, Study Guides & Practice Exam Simulators

Computer Based Training (CBT on CD-ROM) for Exam MCP 70-330: Implementing Security for Applications with Microsoft Visual Basic .NET

Course objectives:

• Develop code under a least privilege account within the development environment.
• Develop code that runs under a least privilege account at run time.
• Analyze security implications of calling unknown code. Third-party components include .NET components, legacy COM components, ActiveX controls, Win32 DLLs, and Web services.
• Write code that addresses failures in a manner that does not compromise security.
• Develop code that includes security measures in each tier of the solution, also known as defense in depth.
• Implement application functionality to apply defaults that minimize security threats.
• Write code to prevent canonicalization problems.
• Validate external input at every boundary level to prevent security problems.
• Implement security by using application domains.
• Implement authentication.
• Write authorization code.
• Sign data by using certificates.
• Implement data protection.
• Implement security for an application or shared library by using .NET code access security.
• Access remote functionality in a manner that minimizes security risks.
• Work with .NET Security policies. Tools include the .NET Framework Configuration tool and the Code Access Security Policy tool.
• Analyze the code access permissions of an assembly by using the Permissions View tool.
• Configure security by using IIS and ASP.NET.
• Perform unit testing on applications and components to identify security vulnerabilities.
• Release applications in a manner that minimizes security risks.