OFFRE LISEUSES
Une liseuse achetée = une housse offerte* jusqu'au 21 juin
Designing Secure Software. A Guide for Developers
Par :Formats :
Disponible dans votre compte client Decitre ou Furet du Nord dès validation de votre commande. Le format ePub est :
- Compatible avec une lecture sur My Vivlio (smartphone, tablette, ordinateur)
- Compatible avec une lecture sur liseuses Vivlio
- Pour les liseuses autres que Vivlio, vous devez utiliser le logiciel Adobe Digital Edition. Non compatible avec la lecture sur les liseuses Kindle, Remarkable et Sony
, qui est-ce ?Notre partenaire de plateforme de lecture numérique où vous retrouverez l'ensemble de vos ebooks gratuitement
Pour en savoir plus sur nos ebooks, consultez notre aide en ligne ici
C'est si simple ! Lisez votre ebook avec l'app Vivlio sur votre tablette, mobile ou ordinateur :
- Nombre de pages312
- FormatePub
- ISBN978-1-7185-0193-5
- EAN9781718501935
- Date de parution21/12/2021
- Protection num.pas de protection
- Taille2 Mo
- Infos supplémentairesepub
- ÉditeurNo Starch Press
- PréfacierAdam Shostack
Résumé
What every software professional should know about security. Designing Secure Software consolidates Loren Kohnfelder's more than twenty years of experience into a concise, elegant guide to improving the security of technology products. Written for a wide range of software professionals, it emphasizes building security into software design early and involving the entire team in the process. The book begins with a discussion of core concepts like trust, threats, mitigation, secure design patterns, and cryptography.
The second part, perhaps this book's most unique and important contribution to the field, covers the process of designing and reviewing a software design with security considerations in mind. The final section details the most common coding flaws that create vulnerabilities, making copious use of code snippets written in C and Python to illustrate implementation vulnerabilities. You'll learn how to: . Identify important assets, the attack surface, and the trust boundaries in a system . Evaluate the effectiveness of various threat mitigation candidates . Work with well-known secure coding patterns and libraries . Understand and prevent vulnerabilities like XSS and CSRF, memory flaws, and more . Use security testing to proactively identify vulnerabilities introduced into code . Review a software design for security flaws effectively and without judgment Kohnfelder's career, spanning decades at Microsoft and Google, introduced numerous software security initiatives, including the co-creation of the STRIDE threat modeling framework used widely today.
This book is a modern, pragmatic consolidation of his best practices, insights, and ideas about the future of software.
The second part, perhaps this book's most unique and important contribution to the field, covers the process of designing and reviewing a software design with security considerations in mind. The final section details the most common coding flaws that create vulnerabilities, making copious use of code snippets written in C and Python to illustrate implementation vulnerabilities. You'll learn how to: . Identify important assets, the attack surface, and the trust boundaries in a system . Evaluate the effectiveness of various threat mitigation candidates . Work with well-known secure coding patterns and libraries . Understand and prevent vulnerabilities like XSS and CSRF, memory flaws, and more . Use security testing to proactively identify vulnerabilities introduced into code . Review a software design for security flaws effectively and without judgment Kohnfelder's career, spanning decades at Microsoft and Google, introduced numerous software security initiatives, including the co-creation of the STRIDE threat modeling framework used widely today.
This book is a modern, pragmatic consolidation of his best practices, insights, and ideas about the future of software.