Defensive Coding for JavaScript and HTML5

Defensive Coding for JavaScript and HTML5

• start the course
• list potential Document Object Model or DOM risks to JavaScript and HTML5 applications
• describe the risks associated with cross-site scripting and cross-site request forgery
• identify what Document Object Model or DOM-based Cross-Site Scripting or XSS is and illustrate the form an attack might take in JavaScript
• describe what social jacking is and identify what things users need to be on the lookout for
• list potential information and trust issues that would affect JavaScript and HTML5 applications
• demonstrate how to prevent Document Object Model or DOM manipulation in JavaScript
• describe common risks associated with third-party application program interfaces or APIs
• demonstrate how to prevent page manipulation in JavaScript through cascading style sheets or CSS
• identify the best practices for dealing with client input in a JavaScript HTML5 application
• troubleshoot potential risks associated with browser plugins
• demonstrate how to counteract risks by running JavaScript in a sandbox
• compare Scalable Vector Graphics or SVG exploits and how to use JavaScript to prevent them
• describe how to secure JavaScript code in your applications
• describe the key features of JavaScript Object Notation
• list the key risks of using JavaScript Object Notation
• perform input validation on JavaScript Object Notation or JSON data
• use the eval method to convert JavaScript Object Notation or JSON data into a JavaScript object
• describe how to implement a cross-origin resource sharing policy in HTML5
• demonstrate the most secure ways to include media in HTML5 pages
• describe secure practices for using HTML5 Web Workers
• distinguish some of the key ways to secure HTML5 applications
• use defensive coding techniques to create a secure JavaScript and HTML5 Application

Defensive Coding Fundamentals for JavaScript and HTML5

Defensive Coding Fundamentals for JavaScript and HTML5

• start the course
• describe the potential risks faced by software applications
• identify the key reasons why risks are a recurring issue
• recognize the key features of defensive coding
• list some key approaches to preventing problems during the planning stage
• recognize the correct way to use, or not use, the escape function
• identify the key features of a strong Cross-Origin Resource Sharing Policy
• use event handlers to account for and prevent untrusted data
• utilize secure Web storage in JavaScript and HTML5
• utilize secure web messaging in JavaScript and HTML5
• identify the key features and benefits of testing
• describe the benefits of testing your code for multiple browsers
• recognize how to write testable code in JavaScript and HTML5
• recognize how to perform tests using Visual Studio for JavaScript and HTML5
• create examples of defensible methods in JavaScript and HTML5
• identify the techniques for applying defensive techniques for method parameters and return values in JavaScript and HTML5 methods
• recognize how to implement variable declarations for defendable code
• identify how to use null values in creating defendable code
• identify how to use if and switch statements in creating defendable code
• identify error-handling techniques to promote defensive coding
• demonstrate how to use exceptions to handle errors
• create a JavaScript and HTML5 application that incorporates error codes and messages into its error handling
• recognize how to use error processing and global objects
• identify how to handle errors locally in JavaScript and HTML5 code
• recognize how to anticipate potential errors in JavaScript and HTML5 code
• use defensive coding techniques to create clean testable methods