En cours de chargement...
Designing Secure Software consolidates Loren Kohnfeldei s more than zo years of security industry experience into a concise, elegant guide to improving software security. Written for a wide range of software professionals, including software architects, designers, developers, and technical managers, it emphasizes building security into software design early and involving the entire team in the process.
The book begins with a discussion of core security concepts : trust, threats, mitigation, secure design patterns, and cryptography. The second part covers the process of developing aid reviewing a software design with security in mind. The final section details the most common coding flaws that create vulnerabilities, aided by extensive code snippets written in C and Python. You'll learn how to : Identify important assets, the attack surface, and the trust boundaries in a system ; Assess the effectiveness of various threat mitigation candidates ; Work with well-known mitigations and secure design patterns ; Understand and prevent vulnerabilities such as XSS and CSRF, and memory flaws ; Use security testing to proactively identify vulnerabilities in code ; Objectively evaluate a software design for security flaws.