Author(s) : Neil Daswani, Christoph Kern, Anita Kesavan
Publisher : Apress
Year : Feb 2007
ISBN-10 : 1590597842
ISBN-13 : 9781590597842
Language : English
Pages : 320
File type : PDF
Size : 2.2 MB (book + source code)
Foundations of Security: What Every Programmer Needs to Know teaches new and current software professionals state-of-the-art software security design principles, methodology, and concrete programming techniques they need to build secure software systems. Once youre enabled with the techniques covered in this book, you can start to alleviate some of the inherent vulnerabilities that make todays software so susceptible to attack. The book uses web servers and web applications as running examples throughout the book.
This book serves as a great complement to the courses that make up the Stanford Center for Professional Development (SCPD) Security Certification Program. The book explains in detail how to defend against a wide range of attacks, and teaches principles of secure system design.
This book is written for programmers. Whether you are studying to be a programmer, have been a programmer for some time, or were a programmer at some point in the past, this book is for you. This book may also be particularly interesting for web programmers, as many of the examples are drawn from the world of web servers and web browsers, key technologies that have and will continue to change the world in ways that we cannot necessarily imagine ahead of time.
It is also written to be read by those who have been programming for some time, but, say, have never been required to take a course in security. (At the time of writing of this book, that probably includes more than 90 percent of the computer science graduates in the world.) It is written so that it can be the first book you read about computer security, but due to its focus on what security should mean for application programmers (as opposed to system administrators), it will help you significantly build on any existing knowledge that you have about network or operating systems security.
TABLE OF CONTENT:
Chapter 01 - Security Goals
Chapter 02 - Secure Systems Design
Chapter 03 - Secure Design Principles
Chapter 04 - Exercises for Part 1
Chapter 05 - Worms and Other Malware
Chapter 06 - Buffer Overflows
Chapter 07 - Client-State Manipulation
Chapter 08 - SQL Injection
Chapter 09 - Password Security
Chapter 10 - Cross-Domain Security in Web Applications
Chapter 11 - Exercises for Part 2
Chapter 12 - Symmetric Key Cryptography
Chapter 13 - Asymmetric Key Cryptography
Chapter 14 - Key Management and Exchange
Chapter 15 - MACs and Signatures
Chapter 16 - Exercises for Part 3
Download from Rapidshare
or
Download from Mihd
password:ganelon
