I am feeling great to announce that I will be speaking at c0c0n - Annual Information Security Day at here in India 
.
Below is the summary of the content which I will be delivering as part of Workshop. Please spread the news and make the event successful. Thanks in advance !
Audience
WCF/Web Services Developers and managers, SOAP Testers and managers, SOA, ESB Architects
Prerequisites
WCF Service development/SOAP Principles knowledge
Contents
- SOA, ESB and WCF Basics
- Understanding SOAP and Restful services
- Creating proxies to consume WCF/Web services
- Introduction to Web services and WCF services Security
- Top 10 WCF Services/SOA Application Security Vulnerabilities
- Attacks and Solutions - Fixing Common WCF Services/SOA Application Vulnerabilities
- Secure Coding Principles from Patterns and Practices Security guide-multiple compilations
- Threat Modeling
- SOAP Security Testing
Demo
Takeaways
- Upon completion of the course, participants will be able to:
- Describe the Web/WCF Services Security problem
- Describe the SOA top 10 vulnerabilities
- Describe the WCF services threat classifications
- Apply coding principles from Patterns and Practices – WCF Security Guide that will help secure their SOA based applications i.e. SecurityBindingElement, Detection of replay attacks etc.
- Implement solutions to SQL Injection, Cross-site scripting and several other critical vulnerabilities
- Describe best practices for integrating security in the Software Development Life-Cycle (SDLC)