GIAC GSSP-Java : GIAC Secure Software Programmer-Java Exam
The GIAC GSSP-Java: GIAC Secure Software Programmer-Java exam is aimed towards candidates who already have responsibility for coding secure software applications and who can identify the shortfalls in security knowledge of other programmers. Additionally, the 75 question exam, which may take up to 3 hours, requires advanced secure programming skills.
One of the skills tested on the GIAC GSSP-Java exam is the candidate's understanding of Java language and platform security. Candidates will need to understand the security concerns of all features which are built into Java.
Candidates must also have familiarity with application faults and logging, authentication procedures, authorization implementation, and common web application attacks. Other concepts on the exam may include data validation, encryption, secure SDLC, and session management.
The SANS Training Course: DEV541: Secure Coding in Java/JEE: Developing Defensible Applications is recommended prior to taking the exam. After successfully passing the exam with as core of 73.3% or higher, a candidate's certification will last for four years before renewal is required.