19 Deadly Sins of Software Security

19 Deadly Sins of Software Security

Editorial Reviews
Book Description
This essential book for all software developers--regardless of platform, language, or type of application--outlines the 19 deadly sins of software security and shows how to fix each one. Best-selling authors Michael Howard and David LeBlanc, who teach Microsoft employees how to secure code, have partnered with John Viega, the man who uncovered the 19 deadly programming sins to write this much-needed book. Coverage includes: Windows, UNIX, Linux, and Mac OS X C, C++, C#, Java, PHP, Perl, and Visual Basic Web, small client, and smart-client applications

From the Back Cover

“Ninety-five percent of software bugs are caused by the same 19 programming flaws.” —Amit Yoran, Former Director of The Department of Homeland Security’s National Cyber Security Division

Secure your software by eliminating code vulnerabilities from the start. This essential book for all software developers--regardless of platform, language, and type of application--outlines the 19 sins of software security and shows how to fix each one. Best-selling authors Michael Howard and David LeBlanc, who teach Microsoft employees how to write secure code, have partnered with John Viega, the man who uncovered the 19 deadly programming sins to write this hands-on guide. Detailed code examples throughout show the code defects as well as the fixes and defenses. If you write code, you need this book. Eliminate these security flaws from your code:

• Buffer overruns
• Format string problems
• Integer overflows
• SQL injection
• Command injection
• Failure to handle errors
• Cross-site scripting
• Failure to protect network traffic
• Use of magic URLs and hidden forms
• Improper use of SSL
• Use of weak password-based systems
• Failure to store and protect data securely
• Information leakage
• Trusting network address resolution
• Improper file access
• Race conditions
• Unauthenticated key exchange
• Failure to use cryptographically strong random numbers
• Poor usability

Michael Howard, CISSP, is an architect of the security process changes at Microsoft and a co-author of Processes to Produce Secure Software published by the Department of Homeland Security’s National Cyber Security Division. He is a Senior Security Program Manager in the Security Engineering Group at Microsoft Corporation and co-author of Writing Secure Code (Microsoft Press). David LeBlanc, Ph.D., is Chief Software Architect for Webroot Software, and was formerly Security Architect in the Office group at Microsoft. He is co-author of Writing Secure Code. John Viega is the CTO of Secure Software. He first defined the 19 deadly sins of software security for the Department of Homeland Security. He is co-author of many security books including Building Secure Software (Addison-Wesley).

19 Deadly Sins of Software Security,Michael Howard,David LeBlanc,John Viega,McGraw-Hill Osborne Media,0072260858,Computer Bks - General Information,Computer Bks - Languages / Programming,Computer Books: General,Computer security,Computer software,Computers,Data encryption (Computer science),Development,Programming - Software Development,Security,Security - General,Computers / Security

Mathematics Book

19 Deadly Sins of Software Security

Books:

1. A+ Complete Study Guide, Third Edition (220-301 and 220-302)
2. A Larger Sense of Purpose : Higher Education and Society (The 2003 Clark Kerr Lectures)
3. Abuse Your Illusions : The Disinformation Guide To Media Mirages And Establishment Lies
4. Adobe Premiere Elements 2 in a Snap (Sams Teach Yourself)
5. AfterBurn : Reflections on Burning Man (CounterCultures)
6. All-American Ads of the 40s
7. Americans and the California Dream, 1850-1915 (Americans and the California Dream)
8. Apocalypse Culture
9. AutoCAD 2006 and AutoCAD LT 2006 Bible
10. Beginning C++ Game Programming (Game Development Series)

Books

books

Books

1. The Digital Darkroom: A Complete Guide to Image Processing for Digital Photographers
2. Second Cooperative Sports and Games Book
3. She (w/o CD) : (NS)
4. Storage Security: Protecting, SANs, NAS and DAS
5. Legal Memories and Amnesias in America's Rhetorical Culture (Polemics Series)
6. Instant Notes: Medicinal Chemistry (Instant Notes)
7. Microbiology: Essentials and Applications
8. Selections from Don Quixote (Dual-Language) (Dual-Language Book)
9. Saiyuki, Vol. 6
10. North Atlantic Seafood: A Comprehensive Guide With Recipes
11. Mythological Creatures and the Chinese Zodiac in Origami (Origami)
12. Positive Parenting for a Peaceful World : A Practical Guide for the First Twelve Years
13. Science in the Service of Children, 1893-1935
14. Painted Ladies: Butterflies of North America (Millie & Cyndi's Pocket Nature Guides)
15. Moon Handbooks Vancouver and Victoria
16. German Books: Deutsche Bücher ~ 65
17. Singzwerge & Krabbelmäuse
18. Katasterplankarte. 25 28 Rechts, 56 68 Hoch. Rheydt-Hockstein
19. Introduction to Project Management