For the last few months I have been busily writing and recording my latest Pluralsight course. I am now over the half way point and making very good progress. The course is called Practical Cryptography in .NET and should be available towards the end of May.
For those of you that have attended my talk on this subject at various user groups, this course expands on that talk and goes into a lot more detail.
The course is aimed at teaching developers about the importance of protecting sensitive data within their systems. As-well as giving lots of technical background, the course will be very practical with lots of live code demonstrations. The course will be split into the following modules.
1. Course Outline and Introduction
2. Cryptographic Random Numbers
3. Hashing Algorithms
4. Secure Password Storage
5. Symmetric Encryption
6. Asymmetric Encryption
7. Hybrid Encryption
8. Digital Signatures
9. Secure String
10. Course Summary
Modules 2 – 6 covers a lot of theory and practical advice on using what is built into the .NET Framework. Module 7 on Hybrid Cryptography takes this a step further to combine a lot of the cryptographic primitives discussed into a cryptography scheme that gives the flexible key management benefits of RSA with the benefits and speed of algorithms like AES which includes full authenticated integrity checking.
This then gets expanded on further by introducing the concept of Digital Signatures to build in non-repudiation into the system.
This course really has been a lot of fun to produce and I am very happy with the results so far. The feedback from my talks on this subject has been very positive and has helped shape the content for this course. This is a subject that every developer should know who works on the back end of their systems, and it could be the measures described in this course that helps you to protect your organization should they be effected by a data breach.
If you work in a financial services or a healthcare company then you will need to know a lot of this information too as you will have regulatory requirements for data security to fulfil.
If you are really interested in this course and it’s ideas, then I have written a book on the same subject called Cryptography in .NET Succinctly. The book is nice and short and works as a good summary to supplement this course. The book and course will go together well. The course expands on all the information in the book and goes into much more detail.
The book is a free download from Syncfusion. You just need to sign up to download it.