Cantitate/Preț
Produs
Total produse
Vezi coșul
Secure Java: For Web Application Development de Abhay Bhargav

Secure Java: For Web Application Development

Autor Abhay Bhargav, B. V. Kumar
en Limba Engleză Hardback – 27 iul 2017
Most security books on Java focus on cryptography and access control, but exclude key aspects such as coding practices, logging, and web application risk assessment. Encapsulating security requirements for web development with the Java programming platform, Secure Java: For Web Application Development covers secure programming, risk assessment, and threat modeling explaining how to integrate these practices into a secure software development life cycle. From the risk assessment phase to the proof of concept phase, the book details a secure web application development process. The authors provide in-depth implementation guidance and best practices for access control, cryptography, logging, secure coding, and authentication and authorization in web application development. Discussing the latest application exploits and vulnerabilities, they examine various options and protection mechanisms for securing web applications against these multifarious threats. The book is organized into four sections:Provides a clear view of the growing footprint of web applications Explores the foundations of secure web application development and the risk management processDelves into tactical web application security development with Java EEDeals extensively with security testing of web applicationsThis complete reference includes a case study of an e-commerce company facing web application security challenges, as well as specific techniques for testing the security of web applications. Highlighting state-of-the-art tools for web application security testing, it supplies valuable insight on how to meet important security compliance requirements, including PCI-DSS, PA-DSS, HIPAA, and GLBA. The book also includes an appendix that covers the application security guidelines for the payment card industry standards.
Citește tot Restrânge

Preț: 97858 lei

Preț vechi: 142653 lei
-31% Nou

Puncte Express: 1468
Preț estimativ în valută:
18728 19454$ 15556£

Carte tipărită la comandă

Livrare economică 03-17 februarie 25

 Adaugă în coș

Wish list
Gift list
Am citit!
Adaugă în listă
Preluare comenzi: 021 569.72.76

Specificații

ISBN-13: 9781138436954
ISBN-10: 113843695X
Pagini: 308
Dimensiuni: 178 x 254 x 24 mm
Greutate: 0.73 kg
Ediția:1
Editura: CRC Press
Colecția CRC Press

Public țintă

Professional Practice & Development

Cuprins

The Internet Phenomenon. Introducing Information Security. Introducing Web Application Security. Web Application Security-A Case Study. FOUNDATIONS OF A SECURE JAVA WEB APPLICATION. Insights into Web Application Security Risk. Risk Assessment for the Typical E-Commerce Web Application. BUILDING A SECURE JAVA WEB APPLICATION. Developing a Bulletproof Access Control System for a Java Web Application. Application Data Protection Techniques. Effective Application Monitoring: Security Logging for Web Applications. Secure Coding Practices for Java Web Applications. TESTING JAVA WEB APPLICATIONS FOR SECURITY. Security Testing for Web Applications. Practical Web Application Security Testing. Appendix A: Application Security Guidelines for the Payment Card Industry Standards (PCI-DSS and PA-DSS).

Recenzii

Given that Java is the platform of choice for enterprise application development the world over, this book fills a much-needed gap by thoroughly and clearly outlining the security requirements of such a critical platform. I strongly believe that this work will prove invaluable to a wide audience, including Java developers, architects, and students.
—Kris Gopalakrishnan, CEO, Infosys Technologies Ltd.
… a great resource that covers all of the essential topics when building out an application security program.
—Ed Bellis, CISO, Orbitz Worldwide

Notă biografică

Abhay Bhargav is the founder and CTO of we45 Solutions India Pvt. Ltd., an information security solutions company. As the CTO of we45, his primary role is to deliver information security consulting solutions for diverse clientele. He also oversees the information security research and application development activities of we45. He has performed security assessments for enterprises in various industires including banking, software development, retail, telecom, and legal. Previously, he was a security assessor for the payment card industry and has led several security assessments for payment card industry compliance. He specializes in Web application security and has performed security testing and consulting engagements for a wide array of enterprises and governmental/quasi-governmental entities. He also possesses security code review, vulnerability assessment, and penetration testing experience. He has been involved in several such assessments for small and large clients from various industries. Abhay is a regular speaker at industry events. He has spoken at the OWASP (Open Web Application Security Project) AppSec Conference in New York. He is a regular speaker at prestigious industry events such as the PCI Summit in Mumbai, December 2008, Business Technology Summit and events organized by the Confederation of Indian Industry (CII). He is also a trainer and has led several public workshops on information security subjects including PCI, PA-DSS, Web application security, and risk assessment. Apart from his professional interests, Abhay is also a trained Carnatic classical flutist and vocalist. He is also a playwright who has an English comedy play to his writing credits. He blogs actively and maintains an information security blog. He writes articles on computer education for the rural youth on a weekly basis for a leading daily. Dr. B. V. Kumar , currently t

Descriere

As the Internet has evolved, so have the various vulnerabilities, which largely stem from the fact that developers are unaware of the importance of a robust application security program. This book aims to educate readers on application security and building secure web applications using the new Java Platform.