From the course: CSSLP Cert Prep: 1 Secure Software Concepts

What you should know

From the course: CSSLP Cert Prep: 1 Secure Software Concepts

Start my 1-month free trial

What you should know

- [Jerod] You may be wondering what you're going to get into throughout this course. This course is intended to be a cert prep course, but it's not just a cert prep course. I want you to be able to pass the CSSLP certification, but more importantly, I want you to understand the information we cover so you can apply it as you work on securing applications. This is a technical course, no doubt. But I want to help you understand and remember those technical concepts in a practical, useful manner. I'll be presenting technical concepts, providing context around those concepts, and sharing some stories about how I've applied this stuff in the real world. You'll also have plenty of opportunities throughout the course to test your knowledge throughout built-in assessments. This is a great practice for the exam process itself. If you do want to roll up your sleeves and fill out your cert knowledge with some hands-on experience, don't worry, I've got you covered. I've got two other courses in the LinkedIn Learning library that are dedicated to application security testing. You don't need to take those other courses to prepare for the CSSLP. But if you're like me, then you're always on the lookout for additional ways that you can boost your knowledge. Bookmark these courses for now. You can decide whether or not you want to give then a go after you complete this cert prep course. Since this course aligns with the first CSSLP domain, secure software concepts, we're going to cover two key concepts. First, we'll cover core concepts. These include ideas like the CIA triad, authentication and authorization controls, and enforcing things like accountability and nonrepudiation. Then we'll cover security design principles. Ever heard terms like the principle of least privilege, or separation of duties? Those are just two of the principles we'll cover in this section. Learning the concepts in this domain is essential to laying a solid foundation on which you can build a secure application.

Contents