Iron-Clad Java

Iron-Clad Java

4.57 (14 ratings by Goodreads)
By (author)  , By (author) 

Free delivery worldwide

Available. Dispatched from the UK in 3 business days
When will my order arrive?


Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.
Proven Methods for Building Secure Java-Based Web ApplicationsDevelop, deploy, and maintain secure Java applications using the expert techniques and open source libraries described in this Oracle Press guide. Iron-Clad Java presents the processes required to build robust and secure applications from the start and explains how to eliminate existing security bugs. Best practices for authentication, access control, data protection, attack prevention, error handling, and much more are included. Using the practical advice and real-world examples provided in this authoritative resource, you'll gain valuable secure software engineering skills.

Establish secure authentication and session management processes
Implement a robust access control design for multi-tenant web applications
Defend against cross-site scripting, cross-site request forgery, and clickjacking
Protect sensitive data while it is stored or in transit
Prevent SQL injection and other injection attacks
Ensure safe file I/O and upload
Use effective logging, error handling, and intrusion detection methods
Follow a comprehensive secure software development lifecycle

"In this book, Jim Manico and August Detlefsen tackle security education from a technical perspective and bring their wealth of industry knowledge and experience to application designers. A significant amount of thought was given to include the most useful and relevant security content for designers to defend their applications. This is not a book about security theories, it's the hard lessons learned from those who have been exploited, turned into actionable items for application designers, and condensed into print." -From the Foreword by Milton Smith, Oracle Senior Principal Security Product Manager, Java
show more

Product details

  • Paperback | 304 pages
  • 188 x 231 x 18mm | 530g
  • MCGRAW-HILL Professional
  • United States
  • English
  • ed
  • 60 Illustrations, unspecified
  • 0071835881
  • 9780071835886
  • 86,544

Table of contents

Chapter 1: Web Application Security Basics
Chapter 2. Authentication and Session Management
Chapter 3: Access Control
Chapter 4: Cross-Site Scripting Defense
Chapter 5: Cross-Site Request Forgery Defense and Clickjacking
Chapter 6: Protecting Sensitive Data
Chapter 7: SQL Injection and Other Injection Attacks
Chapter 8: Safe File Upload and File I/O
Chapter 9: Logging, Error Handling, and Intrusion Detection
Chapter 10: Secure Software Development Lifecycle
Appendix: Resources
show more

About Jim Manico

Jim Manico is an author and educator of developer security awareness trainings. He is also a frequent speaker on secure software practices and is a member of the JavaOne "rockstar hall of fame". He has an 18 year history building software as a developer and architect. Jim is also one of the members of the Global Board of Directors for the OWASP foundation where he helps drive the strategic vision for the organization. He manages and participates in several OWASP projects, including the OWASP cheat sheet series and several secure coding projects. For more information, see or follow him on Twitter at @manicode.
show more

Rating details

14 ratings
4.57 out of 5 stars
5 64% (9)
4 29% (4)
3 7% (1)
2 0% (0)
1 0% (0)
Book ratings by Goodreads
Goodreads is the world's largest site for readers with over 50 million reviews. We're featuring millions of their reader ratings on our book pages to help you find your new favourite book. Close X