24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them

Nonfiction, Computers, Application Software, Computer Security
Cover of the book 24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them by Michael Howard, David LeBlanc, John Viega, Mcgraw-hill
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Michael Howard, David LeBlanc, John Viega ISBN: 9780071626767
Publisher: Mcgraw-hill Publication: September 3, 2009
Imprint: Language: English
Author: Michael Howard, David LeBlanc, John Viega
ISBN: 9780071626767
Publisher: Mcgraw-hill
Publication: September 3, 2009
Imprint:
Language: English

"What makes this book so important is that it reflects the experiences of two of the industry's most experienced hands at getting real-world engineers to understand just what they're being asked for when they're asked to write secure code. The book reflects Michael Howard's and David LeBlanc's experience in the trenches working with developers years after code was long since shipped, informing them of problems." --From the Foreword by Dan Kaminsky, Director of Penetration Testing, IOActive

Eradicate the Most Notorious Insecure Designs and Coding Vulnerabilities

Fully updated to cover the latest security issues, 24 Deadly Sins of Software Security reveals the most common design and coding errors and explains how to fix each one-or better yet, avoid them from the start. Michael Howard and David LeBlanc, who teach Microsoft employees and the world how to secure code, have partnered again with John Viega, who uncovered the original 19 deadly programming sins. They have completely revised the book to address the most recent vulnerabilities and have added five brand-new sins. This practical guide covers all platforms, languages, and types of applications. Eliminate these security flaws from your code:

  • SQL injection
  • Web server- and client-related vulnerabilities
  • Use of magic URLs, predictable cookies, and hidden form fields
  • Buffer overruns
  • Format string problems
  • Integer overflows
  • C++ catastrophes
  • Insecure exception handling
  • Command injection
  • Failure to handle errors
  • Information leakage
  • Race conditions
  • Poor usability
  • Not updating easily
  • Executing code with too much privilege
  • Failure to protect stored data
  • Insecure mobile code
  • Use of weak password-based systems
  • Weak random numbers
  • Using cryptography incorrectly
  • Failing to protect network traffic
  • Improper use of PKI
  • Trusting network name resolution
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

"What makes this book so important is that it reflects the experiences of two of the industry's most experienced hands at getting real-world engineers to understand just what they're being asked for when they're asked to write secure code. The book reflects Michael Howard's and David LeBlanc's experience in the trenches working with developers years after code was long since shipped, informing them of problems." --From the Foreword by Dan Kaminsky, Director of Penetration Testing, IOActive

Eradicate the Most Notorious Insecure Designs and Coding Vulnerabilities

Fully updated to cover the latest security issues, 24 Deadly Sins of Software Security reveals the most common design and coding errors and explains how to fix each one-or better yet, avoid them from the start. Michael Howard and David LeBlanc, who teach Microsoft employees and the world how to secure code, have partnered again with John Viega, who uncovered the original 19 deadly programming sins. They have completely revised the book to address the most recent vulnerabilities and have added five brand-new sins. This practical guide covers all platforms, languages, and types of applications. Eliminate these security flaws from your code:

More books from Mcgraw-hill

Cover of the book The Exchange Strategy for Managing Conflict in Healthcare: How to Defuse Emotions and Create Solutions when the Stakes are High by Michael Howard, David LeBlanc, John Viega
Cover of the book OCA Oracle Database 12c Installation and Administration Exam Guide (Exam 1Z0-062) by Michael Howard, David LeBlanc, John Viega
Cover of the book Gynecologic Oncology: Clinical Practice and Surgical Atlas by Michael Howard, David LeBlanc, John Viega
Cover of the book The Global M&A Tango: How to Reconcile Cultural Differences in Mergers, Acquisitions, and Strategic Partnerships by Michael Howard, David LeBlanc, John Viega
Cover of the book Minitab Demystified by Michael Howard, David LeBlanc, John Viega
Cover of the book The Social Work Portfolio: A Student'S Guide To Evidencing Your Practice by Michael Howard, David LeBlanc, John Viega
Cover of the book Switching Power Supply Design, 3rd Ed. by Michael Howard, David LeBlanc, John Viega
Cover of the book The Complete Guide to Capital Markets for Quantitative Professionals by Michael Howard, David LeBlanc, John Viega
Cover of the book Read & Think English by Michael Howard, David LeBlanc, John Viega
Cover of the book The Canadian Guide to Will and Estate Planning: Everything You Need to Know Today to Protect Your Wealth and Your Family Tomorrow 3E by Michael Howard, David LeBlanc, John Viega
Cover of the book McGraw-Hill's 500 Statistics Questions by Michael Howard, David LeBlanc, John Viega
Cover of the book Le souvenir French Phrasebook and Journal by Michael Howard, David LeBlanc, John Viega
Cover of the book How to Do Everything: iCloud, Second Edition by Michael Howard, David LeBlanc, John Viega
Cover of the book Web Developer's Cookbook by Michael Howard, David LeBlanc, John Viega
Cover of the book Design for Six Sigma Statistics, Chapter 1 - Engineering in a Six Sigma Company by Michael Howard, David LeBlanc, John Viega
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy