Building Secure Software: How to Avoid Security Problems the Right Way

Valutazione media 3,61
( su 31 valutazioni fornite da Goodreads )
 
9780201721522: Building Secure Software: How to Avoid Security Problems the Right Way

Most organizations have a firewall, antivirus software, and intrusion detection systems, all of which are intended to keep attackers out. So why is computer security a bigger problem today than ever before? The answer is simple--bad software lies at the heart of all computer security problems. Traditional solutions simply treat the symptoms, not the problem, and usually do so in a reactive way. This book teaches you how to take a proactive approach to computer security.

Building Secure Software cuts to the heart of computer security to help you get security right the first time. If you are serious about computer security, you need to read this book, which includes essential lessons for both security professionals who have come to realize that software is the problem, and software developers who intend to make their code behave. Written for anyone involved in software development and use—from managers to coders—this book is your first step toward building more secure software. Building Secure Software provides expert perspectives and techniques to help you ensure the security of essential software. If you consider threats and vulnerabilities early in the devel-opment cycle you can build security into your system. With this book you will learn how to determine an acceptable level of risk, develop security tests, and plug security holes before software is even shipped.

Inside you'll find the ten guiding principles for software security, as well as detailed coverage of:

  • Software risk management for security
  • Selecting technologies to make your code more secure
  • Security implications of open source and proprietary software
  • How to audit software
  • The dreaded buffer overflow
  • Access control and password authentication
  • Random number generation
  • Applying cryptography
  • Trust management and input
  • Client-side security
  • Dealing with firewalls

Only by building secure software can you defend yourself against security breaches and gain the confidence that comes with knowing you won't have to play the "penetrate and patch" game anymore. Get it right the first time. Let these expert authors show you how to properly design your system; save time, money, and credibility; and preserve your customers' trust.

Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.

From the Back Cover:

"This book is useful, practical, understandable, and comprehensive. The fact that you have this book in your hands is a step in the right direction. Read it, learn from it. And then put its lessons into practice." --From the Foreword by Bruce Schneier, CTO, Counterpane, and author of Secrets and Lies "A must-read for anyone writing software for the Internet." --Jeremy Epstein, Director, Product Security and Performance, webMethods "This book tackles complex application security problems like buffer overflows, race conditions, and applied cryptography in a manner that is straightforward and easy to understand. This is a must for any application developer or security professional." --Paul Raines, Global Head of Information Risk Management, Barclays Capital

Most organizations have a firewall, antivirus software, and intrusion detection systems, all of which are intended to keep attackers out. So why is computer security a bigger problem today than ever before? The answer is simple--bad software lies at the heart of all computer security problems. Traditional solutions simply treat the symptoms, not the problem, and usually do so in a reactive way. This book teaches you how to take a proactive approach to computer security.

Building Secure Software cuts to the heart of computer security to help you get security right the first time. If you are serious about computer security, you need to read this book, which includes essential lessons for both security professionals who have come to realize that software is the problem, and software developers who intend to make their code behave. Written for anyone involved in software development and use--from managers to coders--this book is your first step toward building more secure software. Building Secure Software provides expert perspectives and techniques to help you ensure the security of essential software. If you consider threats and vulnerabilities early in the devel-opment cycle you can build security into your system. With this book you will learn how to determine an acceptable level of risk, develop security tests, and plug security holes before software is even shipped.

Inside you'll find the ten guiding principles for software security, as well as detailed coverage of:

  • Software risk management for security
  • Selecting technologies to make your code more secure
  • Security implications of open source and proprietary software
  • How to audit software
  • The dreaded buffer overflow
  • Access control and password authentication
  • Random number generation
  • Applying cryptography
  • Trust management and input
  • Client-side security
  • Dealing with firewalls

    Only by building secure software can you defend yourself against security breaches and gain the confidence that comes with knowing you won't have to play the "penetrate and patch" game anymore. Get it right the first time. Let these expert authors show you how to properly design your system; save time, money, and credibility; and preserve your customers' trust.



    020172152XB08202001
  • About the Author:

    John Viega is the CTO of Secure Software Solutions (www.securesw.com) and a noted expert in the area of software security. He is responsible for numerous tools in this area, including code scanners (ITS4 and RATS), random number suites (EGADS), automated repair tools, and secure programming libraries. He is also the original author of Mailman, the GNU mailing list manager.

    Gary McGraw, Cigital's CTO, is a leading authority on software security. Dr. McGraw is coauthor of the groundbreaking books Building Secure Software and Exploiting Software (both from Addison-Wesley). While consulting for major software producers and consumers, he has published over ninety peer-reviewed technical publications, and functions as principal investigator on grants from DARPA, the National Science Foundation, and NIST's Advanced Technology Program. He serves on the advisory boards of Authentica, Counterpane, and Fortify Software. He is also an advisor to the computer science departments at University of California, Davis, and the University of Virginia, as well as the School of Informatics at Indiana University.



    Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.

    I migliori risultati di ricerca su AbeBooks

    Edizione Internazionale
    Edizione Internazionale

    1.

    Viega, John; McGraw, Gary
    Editore: Addison-Wesley Professional
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Hardcover Quantità: 5
    Edizione Internazionale
    Da
    Book Arsenal
    (Delhi, DELHI, India)
    Valutazione libreria
    [?]

    Descrizione libro Addison-Wesley Professional. Hardcover. Condizione libro: New. 020172152X We ship from India. PAPERBACK INTERNATIONAL EDITION Brand New Copy. The ISBN-13 or Cover might be different but content is extactly same. We deliver in 5 - 9 days and actively resolve customer issues. Codice libro della libreria 020172152X-ABAB

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 18,92
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: GRATIS
    Da: India a: U.S.A.
    Destinazione, tempi e costi
    Edizione Internazionale
    Edizione Internazionale

    2.

    Viega
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Softcover Prima edizione Quantità: > 20
    Edizione Internazionale
    Da
    LowPriceBookDeals
    (Wilmington, DE, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Softcover. Condizione libro: New. 1st edition. Brand NEW, Paperback International Edition. Black & White or color, Cover and ISBN may be different but similar contents as US editions. Standard delivery takes 5-9 business days by USPS with tracking number. Choose expedited shipping for superfast delivery 2-4 business days by DHL/FEDEX. We also ship to PO Box addresses but by Standard delivery. International Edition Textbooks may bear a label -Not for sale in the U.S. or Canada- etc. printed only to discourage U.S. students from obtaining an affordable copy. Legal to use despite any disclaimer on cover as per US court. No access code or CD included unless specified. In some instances, the international textbooks may have different exercises at the end of the chapters. Printed in English. We may ship the books from multiple warehouses across the globe, including India depending upon the availability of inventory storage. 100% Customer satisfaction guaranteed! Please feel free to contact us for any queries. Codice libro della libreria LPBD31560709

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 16,05
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: EUR 3,31
    In U.S.A.
    Destinazione, tempi e costi
    Edizione Internazionale
    Edizione Internazionale

    3.

    Viega, John; McGraw, Gary
    Editore: Addison-Wesley Professional
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Brossura Quantità: 8
    Edizione Internazionale
    Da
    Sunshine Book Store
    (Wilmington, DE, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Addison-Wesley Professional. Condizione libro: New. 020172152X This is an International Edition. Brand New, paperback, Delivery within 6-14 business days, Same Contents as U.S Versions, ISBN and Cover design may differ. Choose Expedited shipping for delivery within 4-7 business days. We do not ship to PO Box, APO,FPO Address. We may ship the books from multiple warehouses across the globe, including India depending upon the availability of inventory storage. Customer satisfaction guaranteed. Codice libro della libreria EU_9780201721522

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 19,50
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: GRATIS
    In U.S.A.
    Destinazione, tempi e costi

    4.

    Viega, John; McGraw, Gary
    Editore: Addison-Wesley Professional
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Rilegato Quantità: 1
    Da
    wallacedinc
    (Berlin, NH, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Addison-Wesley Professional. Hardcover. Condizione libro: New. 020172152X 100% satisfaction money back guarantee. Codice libro della libreria Z020172152XZN

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 17,24
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: EUR 2,51
    In U.S.A.
    Destinazione, tempi e costi
    Edizione Internazionale
    Edizione Internazionale

    5.

    John Viega , Gary McGraw
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Paperback Quantità: 2
    Edizione Internazionale
    Da
    PRIORITY BOOKS
    (Springfield, VA, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Paperback. Condizione libro: New. Softcover Book, New Condition, Fast Shipping. Ready in Stock. 1st Edition. [Please Read Carefully Before Buying], This Is An International Edition. Printed In Black and White. 528 Pages, Book Cover And ISBN No May Be Different From US Edition. Restricted Sales Disclaimer Wordings Not For Sales In USA And Canada May Be Printed On The Cover Of The Book. Standard Shipping 7-14 Business Days. Expedited Shiping 4-8 Business Days. ***WE DO NOT ENTERTAIN BULK ORDERS.*** The Books May Be Ship From Overseas For Inventory Purpose. Codice libro della libreria 734055

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 16,87
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: EUR 3,34
    In U.S.A.
    Destinazione, tempi e costi
    Edizione Internazionale
    Edizione Internazionale

    6.

    John Viega; Gary McGraw
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Paperback Quantità: 15
    Edizione Internazionale
    Da
    Bookstore99
    (Wilmington, DE, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Paperback. Condizione libro: NEW. This is an International Edition Brand New Paperback Same Title Author and Edition as listed. ISBN and Cover design differs. Similar Contents as U.S version. Delivery within 3-7 business days. We can ship to PO Box address in US. We may ship the books from multiple warehouses across the globe including Asia depending upon the availability of inventory. Printed in English. Customer satisfaction guaranteed. Choose expedited shipping for Express delivery. Tracking number provided for every order. Codice libro della libreria RU_9780201721522

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 18,44
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: EUR 2,50
    In U.S.A.
    Destinazione, tempi e costi
    Edizione Internazionale
    Edizione Internazionale

    7.

    John Viega , Gary McGraw
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Paperback Prima edizione Quantità: 2
    Edizione Internazionale
    Da
    ZerichSpace
    (Antioch, CA, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Paperback. Condizione libro: New. New condition. Softcover book, 1st Edition. (Read Description Before Buying), This is an international Edition. Black and White Book. ISBN or covers May Be Different From US Edition. Book may have Restricted Sales Disclaimer Wordings printed on cover. Books May Be Shipped From Overseas as per stock status. Codice libro della libreria 761549

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 18,28
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: EUR 3,34
    In U.S.A.
    Destinazione, tempi e costi
    Edizione Internazionale
    Edizione Internazionale

    8.

    Viega
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Softcover Quantità: 7
    Edizione Internazionale
    Da
    Unique Bookseller
    (Delhi, India)
    Valutazione libreria
    [?]

    Descrizione libro Softcover. Condizione libro: Brand New. .. Black & White or color International Edition. ISBN and front cover may be different, but contents are same as the US edition. Book printed in English. Territorial restrictions may be printed on the book. GET IT FAST within 3-5 business days by DHL/FedEx/Aramex and tracking number will be uploaded into your order page within 24-48 hours. Kindly provide day time phone number in order to ensure smooth delivery. No shipping to PO BOX, APO, FPO addresses. 100% Customer satisfaction guaranteed!. . Codice libro della libreria UBS04158

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 22,39
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: GRATIS
    Da: India a: U.S.A.
    Destinazione, tempi e costi

    9.

    McGraw, Gary, Viega, John
    Editore: Addison-Wesley Professional (2001)
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Rilegato Quantità: 1
    Da
    pickabook
    (San francisco, CA, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Addison-Wesley Professional, 2001. Hardcover. Condizione libro: New. Codice libro della libreria mon0000174653

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 26,50
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: EUR 3,34
    In U.S.A.
    Destinazione, tempi e costi

    10.

    John Viega; Gary McGraw
    Editore: Addison-Wesley Professional (2001)
    ISBN 10: 020172152X ISBN 13: 9780201721522
    Nuovi Rilegato Prima edizione Quantità: 1
    Da
    Irish Booksellers
    (Rumford, ME, U.S.A.)
    Valutazione libreria
    [?]

    Descrizione libro Addison-Wesley Professional, 2001. Hardcover. Condizione libro: New. book. Codice libro della libreria M020172152X

    Maggiori informazioni su questa libreria | Fare una domanda alla libreria

    Compra nuovo
    EUR 30,00
    Convertire valuta

    Aggiungere al carrello

    Spese di spedizione: GRATIS
    In U.S.A.
    Destinazione, tempi e costi

    Vedi altre copie di questo libro

    Vedi tutti i risultati per questo libro