Foundations of Security
27%
off

Foundations of Security : What Every Programmer Needs to Know

3.63 (41 ratings by Goodreads)
By (author)  , By (author)  , By (author) 

Free delivery worldwide

Available. Dispatched from the UK in 2 business days
When will my order arrive?

Description

Software developers need to worry about security as never before. They need clear guidance on safe coding practices, and that's exactly what this book delivers. The book does not delve deep into theory, or rant about the politics of security. Instead, it clearly and simply lays out the most common threats that programmers need to defend against. It then shows programmers how to make their defense. The book takes a broad focus, ranging over SQL injection, worms and buffer overflows, password security, and more. It sets programmers on the path towards successfully defending against the entire gamut of security threats that they might face.
show more

Product details

  • Paperback | 292 pages
  • 191 x 235 x 17.78mm | 635g
  • Berkley, United States
  • English
  • 1st ed.
  • 22 Illustrations, black and white; XXVII, 292 p. 22 illus.
  • 1590597842
  • 9781590597842
  • 445,706

Table of contents

Security Goals
Secure Systems Design
Secure Design Principles
Exercises for Part 1
Worms and Other Malware
Buffer Overflows
Client-State Manipulation
SQL Injection
Password Security
Cross-Domain Security in Web Applications
Exercises for Part 2
Symmetric Key Cryptography
Asymmetric Key Cryptography
Key Management and Exchange
MACs and Signatures
Exercises for Part 3
show more

Review Text

From the reviews:

"It is written based on a course for beginning programmers. ... The book has three main parts: security design principles, secure programming techniques, and an introduction to cryptography. ... Exercises are included at the end of each part in order to provide suggestions for getting hands-on experience." (A. Mariën, ACM Computing Reviews, Vol. 49 (5), May, 2008)
show more

Review quote

From the reviews:





"It is written based on a course for beginning programmers. ... The book has three main parts: security design principles, secure programming techniques, and an introduction to cryptography. ... Exercises are included at the end of each part in order to provide suggestions for getting hands-on experience." (A. Marien, ACM Computing Reviews, Vol. 49 (5), May, 2008)
show more

About Christoph Kern

Christoph Kern is an information security engineer at Google and was previously a senior security architect at Yodlee, a provider of technology solutions to the financial services industry. He has extensive experience in performing security design reviews and code audits, designing and developing secure applications, and helping product managers and software engineers effectively mitigate security risks in their software products.
show more

Rating details

41 ratings
3.63 out of 5 stars
5 17% (7)
4 39% (16)
3 37% (15)
2 5% (2)
1 2% (1)
Book ratings by Goodreads
Goodreads is the world's largest site for readers with over 50 million reviews. We're featuring millions of their reader ratings on our book pages to help you find your new favourite book. Close X