Secure and Resilient Software Development
Autor Mark S. Merkow, Lakshmikanth Raghavanen Limba Engleză Hardback – 16 iun 2010
Providing comprehensive coverage, the book illustrates all phases of the secure software development life cycle. It shows developers how to master non-functional requirements including reliability, security, and resilience. The authors provide expert-level guidance through all phases of the process and supply many best practices, principles, testing practices, and design methodologies.
For updates to this book and ongoing activities of interest to the secure and resilient software community, please visit: www.srsdlc.com
"Secure and Resilient Software Development provides a strong foundation for anyone getting started in application security. Most application security books fall into two categories: business-oriented and vague or ridiculously super technical. Mark and Laksh draw on their extensive experience to bridge this gap effectively. The book consistently links important technical concepts back to the business reasons for application security with interesting stories about real companies dealing with application security issues."
—Jeff Williams, Chair, The OWASP Foundation
Preț: 562.29 lei
Preț vechi: 821.05 lei
-32% Nou
Puncte Express: 843
Preț estimativ în valută:
107.63€ • 115.72$ • 89.73£
107.63€ • 115.72$ • 89.73£
Carte tipărită la comandă
Livrare economică 19 decembrie 24 - 02 ianuarie 25
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9781439826966
ISBN-10: 143982696X
Pagini: 404
Ilustrații: 57 b/w images and 19 tables
Dimensiuni: 156 x 234 x 25 mm
Greutate: 0.74 kg
Ediția:New.
Editura: CRC Press
Colecția Auerbach Publications
Locul publicării:Boca Raton, United States
ISBN-10: 143982696X
Pagini: 404
Ilustrații: 57 b/w images and 19 tables
Dimensiuni: 156 x 234 x 25 mm
Greutate: 0.74 kg
Ediția:New.
Editura: CRC Press
Colecția Auerbach Publications
Locul publicării:Boca Raton, United States
V-ar putea interesa
-
ASP 3.0: A Beginner's GuideDave Mercer-20%Preț: 186.77 lei233.47 lei -
-31%Preț: 322.41 lei470.30 lei -
Using Computers in Linguistics: A Practical GuideHelen Aristar Dry-23%Preț: 321.39 lei416.44 lei -
C++ for Programmers 3eL Ammeraal-20%Preț: 649.48 lei811.85 lei -
Virtual Private Networks for DummiesMS Merkow-20%Preț: 168.87 lei211.09 lei -
-31%Preț: 535.91 lei781.21 lei -
Software Architecture Design Patterns in JavaPartha Kuchana-31%Preț: 677.82 lei986.73 lei -
-31%Preț: 399.65 lei579.36 lei -
-31%Preț: 398.07 lei578.35 lei -
Foundations of Software EngineeringAshfaque Ahmed-31%Preț: 431.66 lei622.82 lei -
Mastering Algorithms with PerlJon Orwant-20%Preț: 201.61 lei252.01 lei -
TCL/TK in a Nutshell – A Desktop Quick ReferencePaul Raines-20%Preț: 224.81 lei281.01 lei -
TCL/TK Pocket ReferencePaul Raines-20%Preț: 41.45 lei51.82 lei -
Perl/TK Pocket Reference BookStephen Lidie-20%Preț: 41.81 lei52.26 lei -
Writing Apache Modules with Perl & CLincoln Stein-20%Preț: 268.95 lei336.18 lei -
Preț: 138.15 lei -
-20%Preț: 516.92 lei646.14 lei -
-20%Preț: 454.92 lei568.65 lei -
-20%Preț: 480.39 lei600.48 lei -
Einsatz von XML in DokumentenmanagementsystemenChristian Michel-20%Preț: 480.72 lei600.90 lei -
Klassifikation von Portal und Community SitesMichael Abbate-20%Preț: 529.46 lei661.83 lei
Public țintă
Software developers, software engineers, and programmers.Cuprins
Introduction: Software Resilience. Functionality and Beyond. Software Is Woeful and Getting Worse. Application Security: Critical Concepts. Proven Principles for Resilient Applications. Secure Application Design. Programming Best Practices. Special Considerations. Security Testing. Integrating Security In Your Own SLDC. Security is a Never-ending Journey. Appendices. Glossary.
Notă biografică
Mark S. Merkow, CISSP, CISM, CSSLP, works at PayPal Inc. (an eBay company) in Scottsdale, Arizona, as Manager of Security Consulting and IT Security Strategy in the Information Risk Management area. Mark has over 35 years of experience in information technology in a variety of roles, including applications development, systems analysis and design, security engineer, and security manager. Mark holds a Masters in Decision and Info Systems from Arizona State University (ASU), a Masters of Education in Distance Learning from ASU, and a BS in Computer Info Systems from ASU. In addition to his day job, Mark engages in a number of extracurricular activities, including consulting, course development, online course delivery, writing e-business columns, and writing books on information technology and information security.
Mark has authored or co-authored nine books on IT and has been a contributing editor to four others.
Mark remains very active in the information security community, working in a variety of roles for the Financial Services Information Sharing and Analysis Center (FS-ISAC), the Financial Services Technology Consortium (FSTC), and the Financial Services Sector Coordinating Council (FSCCC) on Homeland Security and Critical Infrastructure Protection.
Lakshmikanth Raghavan (Laksh) works at PayPal Inc. (an eBay company) as Staff Information Security Engineer in the Information Risk Management area. He has over eight years of experience in the areas of information security and information risk management and has been providing consulting services to Fortune 500 companies and financial services companies around the world in his previous stints. He is a Certified Ethical Hacker (CEH) and also maintains the Certified Information Security Manager (CISM) certificate from ISACA (previously known as the Information Systems Audit and Control Association). Laksh holds a Bachelor's degree in Electronics & Telecommunication Engineering from the University of Madras, India. Laksh enjoys writing security-related articles and has spoken on the various dimensions of software security at industry forums and security conferences.
Mark has authored or co-authored nine books on IT and has been a contributing editor to four others.
Mark remains very active in the information security community, working in a variety of roles for the Financial Services Information Sharing and Analysis Center (FS-ISAC), the Financial Services Technology Consortium (FSTC), and the Financial Services Sector Coordinating Council (FSCCC) on Homeland Security and Critical Infrastructure Protection.
Lakshmikanth Raghavan (Laksh) works at PayPal Inc. (an eBay company) as Staff Information Security Engineer in the Information Risk Management area. He has over eight years of experience in the areas of information security and information risk management and has been providing consulting services to Fortune 500 companies and financial services companies around the world in his previous stints. He is a Certified Ethical Hacker (CEH) and also maintains the Certified Information Security Manager (CISM) certificate from ISACA (previously known as the Information Systems Audit and Control Association). Laksh holds a Bachelor's degree in Electronics & Telecommunication Engineering from the University of Madras, India. Laksh enjoys writing security-related articles and has spoken on the various dimensions of software security at industry forums and security conferences.
Recenzii
... provides a strong foundation for anyone getting started in application security. Most application security books fall into two categories: business-oriented and vague or ridiculously super technical. Mark and Laksh draw on their extensive experience to bridge this gap effectively. The book consistently links important technical concepts back to the business reasons for application security with interesting stories about real companies dealing with application security issues.
-Jeff Williams, Chair, The OWASP Foundation
-Jeff Williams, Chair, The OWASP Foundation
Descriere
Many of the software books available clearly highlight the problems with current software development but don't provide comprehensive, easily actionable, ground-level solutions. Covering the entire secure software development life cycle that ties all development together, this book presents quality software development strategies and practices stressing resilience requirements with precise, actionable, and ground-level inputs that connect directly with their creators. The text helps developers understand fundamental problems and provides them with best practices, principles, design methodology, programming guidance, and testing practices.