Sinossi
Modern web applications are built on a tangle of technologies that have been developed over time and then haphazardly pieced together. Every piece of the web application stack, from HTTP requests to browser-side scripts, comes with important yet subtle security consequences. To keep users safe, it is essential for developers to confidently navigate this landscape.
In The Tangled Web, Michal Zalewski, one of the world’s top browser security experts, offers a compelling narrative that explains exactly how browsers work and why they’re fundamentally insecure. Rather than dispense simplistic advice on vulnerabilities, Zalewski examines the entire browser security model, revealing weak points and providing crucial information for shoring up web application security.
You’ll learn how to:
–Perform common but surprisingly complex tasks such as URL parsing and HTML sanitization
–Use modern security features like Strict Transport Security, Content Security Policy, and Cross-Origin Resource Sharing
–Leverage many variants of the same-origin policy to safely compartmentalize complex web applications and protect user credentials in case of XSS bugs
–Build mashups and embed gadgets without getting stung by the tricky frame navigation policy
–Embed or host user-supplied content without running into the trap of content sniffing
For quick reference, "Security Engineering Cheat Sheets" at the end of each chapter offer ready solutions to problems you’re most likely to encounter. With coverage extending as far as planned HTML5 features, The Tangled Web will help you create secure web applications that stand the test of time.
Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.
Informazioni sull?autore
Michal Zalewski is an internationally recognized information security expert with a long track record of delivering cutting-edge research. He is credited with discovering hundreds of notable security vulnerabilities and frequently appears on lists of the most influential security experts. He is the author of Silence on the Wire (No Starch Press), Google's "Browser Security Handbook," and numerous important research papers.
Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.
Risultati della ricerca per The Tangled Web: A Guide to Securing Modern Web Applications
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: World of Books (was SecondSale), Montgomery, IL, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: Good. Item in good condition. Textbooks may not include supplemental items i.e. CDs, access codes etc. Codice articolo 00095758308
Compra usato
EUR 5,33
Spedizione gratuita
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 4 disponibili
Immagini fornite dal venditore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: Aspen Book Co., Denver, CO, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: good. A well-loved companion. Corners and cover might show a little wear, and you could find some notes or highlights. The dust jacket might be MIA, it might have been a library book and extras aren't guaranteedâ"but the story's all there! Codice articolo PKV.1593273886.G
Compra usato
EUR 5,44
Spedizione gratuita
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: Evergreen Goodwill, Seattle, WA, U.S.A.
Valutazione del venditore 5 su 5 stelle
paperback. Condizione: Good. Codice articolo mon0000076042
Compra usato
EUR 3,56
Spedizione EUR 3,44
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: ThriftBooks-Dallas, Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Good. No Jacket. Former library book; Pages can have notes/highlighting. Spine may show signs of wear. ~ ThriftBooks: Read More, Spend Less. Codice articolo G1593273886I3N10
Compra usato
EUR 7,14
Spedizione gratuita
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: ThriftBooks-Dallas, Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less. Codice articolo G1593273886I4N00
Compra usato
EUR 7,14
Spedizione gratuita
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: HPB-Red, Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Good. Connecting readers with great books since 1972! Used textbooks may not include companion materials such as access codes, etc. May have some wear or writing/highlighting. We ship orders daily and Customer Service is our top priority! Codice articolo S_458235276
Compra usato
EUR 4,44
Spedizione EUR 3,23
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Immagini fornite dal venditore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: Goodwill of Silicon Valley, SAN JOSE, CA, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: good. Supports Goodwill of Silicon Valley job training programs. The cover and pages are in Good condition! Any other included accessories are also in Good condition showing use. Use can include some highlighting and writing, page and cover creases as well as other types visible wear. Codice articolo GWSVV.1593273886.G
Compra usato
EUR 7,53
Spedizione EUR 3,44
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: HPB Inc., Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Very Good. Connecting readers with great books since 1972! Used books may not include companion materials, and may have some shelf wear or limited writing. We ship orders daily and Customer Service is our top priority! Codice articolo S_464786280
Compra usato
EUR 11,08
Spedizione EUR 3,23
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: Half Price Books Inc., Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Very Good. Connecting readers with great books since 1972! Used books may not include companion materials, and may have some shelf wear or limited writing. We ship orders daily and Customer Service is our top priority! Codice articolo S_469868494
Compra usato
EUR 17,74
Spedizione EUR 3,01
Spedito in U.S.A.
Spedito in U.S.A.
Quantità: 1 disponibili
Immagini fornite dal venditore
The Tangled Web â" A Guide to Securing Modern Web Applications
Da: WeBuyBooks, Rossendale, LANCS, Regno Unito
Valutazione del venditore 5 su 5 stelle
Condizione: Good. Most items will be dispatched the same or the next working day. A copy that has been read but remains in clean condition. All of the pages are intact and the cover is intact and the spine may show signs of wear. The book may have minor markings which are not specifically mentioned. Codice articolo rev9935270927
Compra usato
EUR 14,50
Spedizione EUR 8,93
Spedito da Regno Unito a U.S.A.
Spedito da Regno Unito a U.S.A.
Quantità: 1 disponibili