After completing the course, the student should be able to do the following: list and describe the OWASP Top 10 vulnerabilities; identify methods to provide cloud security assurance as part of the development life cycle, e.g. in a continuous delivery environment; list and describe the different types of virtualization or sandboxing used to protect cloud applications at either the server or client; describe the application of authentication factors and federated identity solutions in cloud client and server authentication; given a cloud application, explain where and how the necessary crypto keys, passwords, and other security secrets should be stored and distributed.

Enroll in course

MOOC List is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Course 3 of 4 in the Cybersecurity in the Cloud Specialization

Syllabus

WEEK 1

Application Security Risks

This module introduces the course and reviews OWASP "Top Ten" risks relevant to cloud computing. There are also background videos on packet network operation.

WEEK 2

Architecture and Authentication

A discussion of server architecture principles and survey of user authentication mechanisms.

WEEK 3

Session Management

The session mechanism maintains application state across independent, stateless transactions via HTTP or a web API.

WEEK 4

Providers, Crypto, and Scripts

These videos cover additional topics: provider trust, using provider crypto, and security mechanisms for preventing script-based attacks.

Cybersecurity in the Cloud Specialization