Writing Secure Code Practical Strategies and Proven Techniques for Building Secure Applications in a Networked World

Name: Writing Secure Code Practical Strategies and Proven Techniques for Building Secure Applications in a Networked World
Availability: InStock
ISBN: 9780735617223

ISBN-10: 0735617228

ISBN-13: 9780735617223

Edition: 2nd 2003 (Revised)

Authors: David LeBlanc, Michael Howard

List price: $49.99

30 day, 100% satisfaction guarantee!

Semester Rental: $19.09 Due date: 8/13/2024

Rental notice: supplementary materials (access codes, CDs, etc.) are not guaranteed with rental orders.

Buy used: $8.14

Marketplace

3 new & used from $5.70

what's this?

Rush Rewards U
Members Receive:

You have reached 400 XP and carrot coins. That is the daily max!

Book details

List price: $49.99
Edition: 2nd
Copyright year: 2003
Publisher: Pearson Education
Publication date: 12/4/2002
Binding: Paperback
Pages: 800
Size: 7.00" wide x 9.00" long x 2.00" tall
Weight: 3.630
Language: English

David LeBlanc, Ph.D., is a founding member of the Trustworthy Computing Initiative at Microsoft(R). He has been developing solutions for computing security issues since 1992 and has created award-winning tools for assessing network security and uncovering security vulnerabilities. David is a senior developer in the Microsoft Office Trustworthy Computing group.




Contemporary Security



The Need for Secure Systems



The Proactive Security Development Process



Security Principles to Live By



Threat Modeling



Secure Coding Techniques



Public Enemy #1: The Buffer Overrun



Determining Appropriate Access Control



Running with Least Privilege



Cryptographic Foibles



Protecting Secret Data



All Input Is Evil!



Canonical Representation Issues



Database Input Issues



Web-Specific Input Issues



Internationalization Issues



Even More Secure Coding Techniques



Socket Security



Securing RPC, ActiveX Controls, and DCOM



Protecting Against Denial of Service Attacks



Writing Secure .NET Code



Special Topics



Security Testing



Performing a Security Code Review



Secure Software Installation



Building Privacy into Your Application



General Good Practices



Writing Security Documentation and Error Messages



Appendixes



Dangerous APIs



Ridiculous Excuses We've Heard



A Designer's Security Checklist



A Developer's Security Checklist



A Tester's Security Checklist