Defensive Programming Competency (Intermediate Level)

  • 20m
  • 20 questions
The Defensive Programming Competency (Intermediate Level) benchmark measures your knowledge of advanced defensive coding practices such as session and risk management, assertive programming, and intelligible exceptions. You will be assessed on your ability to apply defensive coding techniques such as filtering, resilient code, recoverable code, parameter checking, and validation and apply secure coding concepts and processes. Learners who score high on this benchmark demonstrate that they have the skills to apply advanced defensive coding techniques and secure coding practices.

Topics covered

  • apply effective and secure regression testing
  • apply secure integration testing including when and who conducts integration testing
  • apply secure unit testing including how it is done and who should do it
  • define risk management and be able to apply risk management to software projects
  • describe assertive programming and be able to implement assertions
  • describe intelligible exceptions and be able to implement meaningful and actionable exception handling
  • describe secure testing concepts including unit, integration, and regression testing
  • describe session management techniques and secure session management
  • effectively track security bugs
  • implement C# filtering
  • implement C# parameter checking
  • implement Java parameter checking
  • implement Java resilient code
  • implement JavaScript recoverable code
  • implement Python filtering
  • implement Python recoverable code
  • implement Python resilient code
  • implement validation in C#
  • implement validation in Python
  • use effective security metrics