Internet Cross Logo
Internet Cross your one stop web tutorial website
Your Ad Here
Search Internet Cross Shop:

Foundations of Security: What Every Programmer Needs to Know (Expert's Voice)

List Price: $39.99
Our Price: $4.47
Your Save:$ 35.52 ( 89% )
Availability: Usually ships in 24 hours
Manufacturer: Apress Average Customer Rating: Average rating of 4.5/5Average rating of 4.5/5Average rating of 4.5/5Average rating of 4.5/5Average rating of 4.5/5

Buy it now at Amazon.com!

Back to previous page




Foundations of Security: What Every Programmer Needs to Know (Expert's Voice)

Binding: Paperback
Dewey Decimal Number: 005
EAN: 9781590597842
ISBN: 1590597842
Label: Apress
Manufacturer: Apress
Number Of Items: 1
Number Of Pages: 320
Publication Date: 2007-02-16
Publisher: Apress
Studio: Apress
Accessories
Workflow in the 2007 Microsoft Office System
Pro C# with .NET 3.0, Special Edition (Pro)
Microsoft SharePoint: Building Office 2007 Solutions in C# 2005 (Expert's Voice in Sharepoint)
Related Items
Spotlight customer reviews:
Customer Rating: Average rating of 2/5Average rating of 2/5Average rating of 2/5Average rating of 2/5Average rating of 2/5
Summary: Alphabet soup with no practical guidance on security
Comment: I found this book as a collection of google-able basic material. The book provides zero guidance to a programmer on the basics for how-to implement security in code not just alphabet soup because "the devil is in the details". I wrongly picked this book and now it just fills an odd spot of our IT library as this book has no relevance to a Microsoft or Java programmer or Web 2.0 (J*Script) programmer. With Security taking mainstream in every aspect of programming and every component of IT stack - this book did not provide any confidence to an average developer aspiring to securing SOA or J2EE/.NET application. As a whole, the book reflects poorly on the technical content maybe I am not the intended audience of this book.
Customer Rating: Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5
Summary: Easy to enjoy
Comment: Having an English major as one of the authors makes a big difference. The expertise from the other two reknown authors is communicated in simple, easy-to-understand language.
Customer Rating: Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5
Summary: Programming with Security in Mind
Comment: An excellent book for new programmers. The first part of the book provides a very good overview of security concepts. Chapters 5-10 detail different attacks and their defense. At 290 pages, the authors don't waste the reader's time. Information is well covered with enough detail for most readers.

Throughout the book the authors present code examples on exploits and their defense. Even through the examples are written in different languages, the authors explain the code clearly. The reader doesn't' have to be familiar with the particular language. I haven't written anything in Java in over six years, but had no problem understand the Java examples.

If you are a new programmer or haven't read a book on security recently, this would be the book.

Customer Rating: Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5
Summary: Bleeding Edge Security Advice for Programmers
Comment: While some of the good security books for software developers need to be updated, this is, in my opinion, a much needed new security book for programmers. It is clear yet not too formal with good examples. Even if you have done a bit of security programming, chapters 7 and on are definitely worth the read.

Although this book doesn't have all the answers (e.g. no comparison of web programming languages), web programmers will not be disappointed and my guess is that most web programmers need to read this book.

The authors work at Google and are dealing with some of the nastiest problems the Internet has to offer. They are very good communicators, have written some of the best recent papers and I'm glad to see Neil Daswani just started a blog on blogspot.
Customer Rating: Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5Average rating of 5/5
Summary: What all developers need to read
Comment: Our collective security against threats such as phishing, denial of service and online fraud in general depends not only on our own actions, but also on those of others. While other users may affect your security by their actions (or lack thereof), the most important person in terms of your security is the software developer. This is a book written to help software developers identify common problems and create security-conscious designs.

This easily accessible book describes common problems in an instructive manner. It explains what will and what will not work, reviews good design principles, and offers an overview of commonly used cryptographic techniques. If every developer lived by the guidelines of this book, we would be in a much better shape than we currently are.
  
Editorial Reviews:

Information Technology is for everyone, not just geeks. But that means security is everyone's business, as you will discover in the pages of this excellent book!


— Vinton G. Cerf - a Founding Father of the Internet

This book serves as a great complement to the courses that make up the Stanford Center for Professional Development (SCPD) Security Certification Program. The book explains in detail how to defend against a wide range of attacks, and teaches principles of secure system design.


— Dr. Dan Boneh, Associate Professor, Computer Science and Electrical Engineering, Stanford University

Foundations of Security: What Every Programmer Needs to Know teaches new and current software professionals state-of-the-art software security design principles, methodology, and concrete programming techniques they need to build secure software systems. Once youre enabled with the techniques covered in this book, you can start to alleviate some of the inherent vulnerabilities that make todays software so susceptible to attack. The book uses web servers and web applications as running examples throughout the book.

For the past few years, the Internet has had a "wild, wild west" flavor to it. Credit card numbers are stolen in massive numbers. Commercial web sites have been shut down by Internet worms. Poor privacy practices come to light and cause great embarrassment to the corporations behind them. All these security-related issues contribute at least to a lack of trust and loss of goodwill. Often there is a monetary cost as well, as companies scramble to clean up the mess when they get spotlighted by poor security practices.

It takes time to build trust with users, and trust is hard to win back. Security vulnerabilities get in the way of that trust. Foundations of Security: What Every Programmer Needs To Know helps you manage risk due to insecure code and build trust with users by showing how to write code to prevent, detect, and contain attacks.

  • The lead author cofounded the Stanford Center for Professional Development Computer Security Certification.
  • This book teaches you how to be more vigilant and develop a sixth sense for identifying and eliminating potential security vulnerabilities.
  • Youll receive hands-on code examples for a deep and practical understanding of security.
  • Youll learn enough about security to get the job done.
Buy it now at Amazon.com!