Lesson 01 - Basic Concepts

AppSec Starter is a basic application security awareness training applied to onboarding new developers. It is not the purpose of this training to discuss advanced and practical topics. Conviso has customized training and practical training platforms.

Training recorded by Nicolas Schmaltz and copyright reserved to Conviso Application Security S/A.

Lesson 1 Contents:

  • Attack surface and its reduction
  • Defense in depth/layers
  • Principle of least privilege
  • Safe standards
  • Privacy
  • Authentication and authorization
  • Accountability
  • Data types