Sinossi
Modern web applications are built on a tangle of technologies that have been developed over time and then haphazardly pieced together. Every piece of the web application stack, from HTTP requests to browser-side scripts, comes with important yet subtle security consequences. To keep users safe, it is essential for developers to confidently navigate this landscape.
In The Tangled Web, Michal Zalewski, one of the world’s top browser security experts, offers a compelling narrative that explains exactly how browsers work and why they’re fundamentally insecure. Rather than dispense simplistic advice on vulnerabilities, Zalewski examines the entire browser security model, revealing weak points and providing crucial information for shoring up web application security.
You’ll learn how to:
–Perform common but surprisingly complex tasks such as URL parsing and HTML sanitization
–Use modern security features like Strict Transport Security, Content Security Policy, and Cross-Origin Resource Sharing
–Leverage many variants of the same-origin policy to safely compartmentalize complex web applications and protect user credentials in case of XSS bugs
–Build mashups and embed gadgets without getting stung by the tricky frame navigation policy
–Embed or host user-supplied content without running into the trap of content sniffing
For quick reference, "Security Engineering Cheat Sheets" at the end of each chapter offer ready solutions to problems you’re most likely to encounter. With coverage extending as far as planned HTML5 features, The Tangled Web will help you create secure web applications that stand the test of time.
Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.
Informazioni sull?autore
Michal Zalewski is an internationally recognized information security expert with a long track record of delivering cutting-edge research. He is credited with discovering hundreds of notable security vulnerabilities and frequently appears on lists of the most influential security experts. He is the author of Silence on the Wire (No Starch Press), Google's "Browser Security Handbook," and numerous important research papers.
Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.
Risultati della ricerca per The Tangled Web: A Guide to Securing Modern Web Applications
Foto dell'editore
The Tangled Web A Guide to Se
Da: World of Books (was SecondSale), Montgomery, IL, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: Good. Item in good condition. Textbooks may not include supplemental items i.e. CDs, access codes etc. Codice articolo 00094300791
Compra usato
EUR 4,35
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Immagini fornite dal venditore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: Greenworld Books, Arlington, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: good. Fast Free Shipping â" Good condition book with a firm cover and clean, readable pages. Shows normal use, including some light wear or limited notes highlighting, yet remains a dependable copy overall. Supplemental items like CDs or access codes may not be included. Codice articolo GWV.1593273886.G
Compra usato
EUR 4,37
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: Seattle Goodwill, Seattle, WA, U.S.A.
Valutazione del venditore 5 su 5 stelle
paperback. Condizione: Good. Codice articolo mon0000076042
Compra usato
EUR 1,40
Spese di spedizione:
EUR 3,44
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: St Vincent de Paul of Lane County, Eugene, OR, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: Acceptable. PLEASE NOTE: FORMER LIBRARY COPY. MAY HAVE IDENTIFYING MARKS, STAMPS AND/OR STICKERS, ETC BUT BOOK REMAINS IN ACCEPTABLE READING CONDITION. Former Library book. paperback 100% of proceeds go to charity! Acceptable reading copy with obvious signs of use, wear, and/or cosmetic issues. Item is complete and remains readable despite notable condition issues. Codice articolo C-03-5443
Compra usato
EUR 4,88
Spese di spedizione:
EUR 3,44
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: ThriftBooks-Atlanta, AUSTELL, GA, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Good. No Jacket. Pages can have notes/highlighting. Spine may show signs of wear. ~ ThriftBooks: Read More, Spend Less. Codice articolo G1593273886I3N00
Compra usato
EUR 8,73
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: ThriftBooks-Dallas, Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Good. No Jacket. Pages can have notes/highlighting. Spine may show signs of wear. ~ ThriftBooks: Read More, Spend Less. Codice articolo G1593273886I3N00
Compra usato
EUR 8,73
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: ThriftBooks-Dallas, Dallas, TX, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less. Codice articolo G1593273886I4N00
Compra usato
EUR 8,73
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web: A Guide to Securing Modern Web Applications
Da: ThriftBooks-Atlanta, AUSTELL, GA, U.S.A.
Valutazione del venditore 5 su 5 stelle
Paperback. Condizione: Fair. No Jacket. Readable copy. Pages may have considerable notes/highlighting. ~ ThriftBooks: Read More, Spend Less. Codice articolo G1593273886I5N00
Compra usato
EUR 8,73
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
The Tangled Web : A Guide to Securing Modern Web Applications
Editore:
No Starch Press, Incorporated, 2011
ISBN 10: 1593273886
ISBN 13: 9781593273880
Antico o usato
Brossura
Prima edizione
Da: Better World Books, Mishawaka, IN, U.S.A.
Valutazione del venditore 5 su 5 stelle
Condizione: Very Good. 1st Edition. Former library book; may include library markings. Used book that is in excellent condition. May show signs of wear or have minor defects. Codice articolo GRP89538906
Compra usato
EUR 9,11
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili
Foto dell'editore
Tangled Web: A Guide to Securing Modern Web Applications
Editore:
No Starch Press November 2011, 2011
ISBN 10: 1593273886
ISBN 13: 9781593273880
Antico o usato
Paper Back
Da: Isle of Books, Bozeman, MT, U.S.A.
Valutazione del venditore 3 su 5 stelle
Paper Back. Condizione: Very Good. Codice articolo 578408
Compra usato
EUR 13,33
Spese di spedizione:
GRATIS
In U.S.A.
Quantità: 1 disponibili