What Every Web Programmer Needs To Know About Security

This submission contains slides that complement each of the chapters in the book "Foundations of Security: What Every Programmer Needs To Know" for use by instructors and students alike. The slides cover secure design principles, common web application vulnerabilities, an introduction to cryptography, and much more!

Part 1

1. Security Goals
2. Secure Systems Design
3. Secure Design Principles
4. Exercises for Part 1

Part 2

5. Worms and Other Malware
6. Buffer Overflows
7. Client-State Manipulation
8. SQL Injection
9. Password Security
10. Cross-Domain Security in Web Applications
11. Exercises for Part 2

Part 3

12. Symmetric Key Cryptography
13. Asymmetric Key Cryptography
14. Key Management & Exchange
15. MACs and Signatures
16. Exercises for Part 3

All slides (4.2 MB zip)