24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them

Nonfiction, Computers, Application Software, Computer Security
Cover of the book 24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them by Michael Howard, David LeBlanc, John Viega, Mcgraw-hill
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Michael Howard, David LeBlanc, John Viega ISBN: 9780071626767
Publisher: Mcgraw-hill Publication: September 3, 2009
Imprint: Language: English
Author: Michael Howard, David LeBlanc, John Viega
ISBN: 9780071626767
Publisher: Mcgraw-hill
Publication: September 3, 2009
Imprint:
Language: English

"What makes this book so important is that it reflects the experiences of two of the industry's most experienced hands at getting real-world engineers to understand just what they're being asked for when they're asked to write secure code. The book reflects Michael Howard's and David LeBlanc's experience in the trenches working with developers years after code was long since shipped, informing them of problems." --From the Foreword by Dan Kaminsky, Director of Penetration Testing, IOActive

Eradicate the Most Notorious Insecure Designs and Coding Vulnerabilities

Fully updated to cover the latest security issues, 24 Deadly Sins of Software Security reveals the most common design and coding errors and explains how to fix each one-or better yet, avoid them from the start. Michael Howard and David LeBlanc, who teach Microsoft employees and the world how to secure code, have partnered again with John Viega, who uncovered the original 19 deadly programming sins. They have completely revised the book to address the most recent vulnerabilities and have added five brand-new sins. This practical guide covers all platforms, languages, and types of applications. Eliminate these security flaws from your code:

  • SQL injection
  • Web server- and client-related vulnerabilities
  • Use of magic URLs, predictable cookies, and hidden form fields
  • Buffer overruns
  • Format string problems
  • Integer overflows
  • C++ catastrophes
  • Insecure exception handling
  • Command injection
  • Failure to handle errors
  • Information leakage
  • Race conditions
  • Poor usability
  • Not updating easily
  • Executing code with too much privilege
  • Failure to protect stored data
  • Insecure mobile code
  • Use of weak password-based systems
  • Weak random numbers
  • Using cryptography incorrectly
  • Failing to protect network traffic
  • Improper use of PKI
  • Trusting network name resolution
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

"What makes this book so important is that it reflects the experiences of two of the industry's most experienced hands at getting real-world engineers to understand just what they're being asked for when they're asked to write secure code. The book reflects Michael Howard's and David LeBlanc's experience in the trenches working with developers years after code was long since shipped, informing them of problems." --From the Foreword by Dan Kaminsky, Director of Penetration Testing, IOActive

Eradicate the Most Notorious Insecure Designs and Coding Vulnerabilities

Fully updated to cover the latest security issues, 24 Deadly Sins of Software Security reveals the most common design and coding errors and explains how to fix each one-or better yet, avoid them from the start. Michael Howard and David LeBlanc, who teach Microsoft employees and the world how to secure code, have partnered again with John Viega, who uncovered the original 19 deadly programming sins. They have completely revised the book to address the most recent vulnerabilities and have added five brand-new sins. This practical guide covers all platforms, languages, and types of applications. Eliminate these security flaws from your code:

More books from Mcgraw-hill

Cover of the book First Aid for the USMLE Step 1 2018, 28th Edition by Michael Howard, David LeBlanc, John Viega
Cover of the book Entropy Theory in Hydrologic Science and Engineering by Michael Howard, David LeBlanc, John Viega
Cover of the book C# 3.0: A Beginner's Guide by Michael Howard, David LeBlanc, John Viega
Cover of the book The Old Rules of Marketing are Dead: 6 New Rules to Reinvent Your Brand and Reignite Your Business by Michael Howard, David LeBlanc, John Viega
Cover of the book Green Facilities: Industrial and Commercial LEED Certification (GreenSource) by Michael Howard, David LeBlanc, John Viega
Cover of the book Dynamic Analysis of Skeletal Structures by Michael Howard, David LeBlanc, John Viega
Cover of the book The Future Workplace Experience: 10 Rules For Mastering Disruption in Recruiting and Engaging Employees by Michael Howard, David LeBlanc, John Viega
Cover of the book All About Candlestick Charting by Michael Howard, David LeBlanc, John Viega
Cover of the book Build Your Own Autonomous NERF Blaster by Michael Howard, David LeBlanc, John Viega
Cover of the book Home Generator Selection, Installation and Repair by Michael Howard, David LeBlanc, John Viega
Cover of the book Biofilm Reactors WEF MOP 35 by Michael Howard, David LeBlanc, John Viega
Cover of the book The Birth of Plenty: How the Prosperity of the Modern Work was Created by Michael Howard, David LeBlanc, John Viega
Cover of the book Official Guide to the TOEFL Test with Downloadable Tests, Fifth Edition by Michael Howard, David LeBlanc, John Viega
Cover of the book Portfolio Performance Measurement and Benchmarking, Chapter 9 - What Is Risk? by Michael Howard, David LeBlanc, John Viega
Cover of the book Oracle Database 10g XML & SQL: Design, Build, & Manage XML Applications in Java, C, C++, & PL/SQL by Michael Howard, David LeBlanc, John Viega
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy