The Definitive Guide to HTML5 Security
Autor Manish S. Saindane, Lavakumar Kuppanen Limba Engleză Paperback – 15 feb 2017
The addition of these complex and feature-rich APIs increases the potential attack surface of your applications, giving smart hackers more opportunities for reaching your private data. Although the W3C have given more consideration to security issues while defining the HTML5 standard than with previous HTML iterations, it is still very possible to introduce security flaws in your web applications with improper use of these APIs. The Definite Guide to HTML5 Security details these security and privacy flaws that arise due to the insecure implementation of the HTML5 APIs and provides methods to secure your applications and websites against them.
The Definitive Guide to HTML5 Security:
Introduces you to the potent
ial security and privacy flaws that may occur due to insecure implementation of the various HTML5 APIs.- Provides information that will help you make the right security decisions while designing and conceptualizing various application components.
- Provides detailed examples and walkthroughs, showing ways to implement these features securely.
Preț: 201.19 lei
Preț vechi: 251.49 lei
-20% Nou
Puncte Express: 302
Preț estimativ în valută:
38.51€ • 40.04$ • 32.22£
38.51€ • 40.04$ • 32.22£
Carte nepublicată încă
Doresc să fiu notificat când acest titlu va fi disponibil:
Se trimite...
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9781484202067
ISBN-10: 1484202066
Pagini: 350
Ilustrații: Bibliographie
Dimensiuni: 178 x 254 mm
Ediția:1st ed.
Editura: Apress
Colecția Apress
Locul publicării:Berkeley, CA, United States
ISBN-10: 1484202066
Pagini: 350
Ilustrații: Bibliographie
Dimensiuni: 178 x 254 mm
Ediția:1st ed.
Editura: Apress
Colecția Apress
Locul publicării:Berkeley, CA, United States
Public țintă
Popular/generalCuprins
Part I: Getting Started
Chapter 1: HTML5: The Background Behind the New Features
Chapter 2: Identifying the Most Common Web Security Problems
Part II: Cross Origin Communication Security
Chapter 3: The Evolution of Cross Origin Communication Before HTML5
Chapter 4: Securing Communication with Cross Domain Servers with HTML5 Cross Origin Requests
Chapter 5: Securing Client-side Cross Domain Communication with HTML5 Web Messaging
Part III: Client-side Storage
Chapter 6: The Evolution of Client-side Storage Before HTML5
Chapter 7: Security Considerations when Storing Client-side Data with HTML5 Web Storage
Chapter 8: Avoiding SQL Injections and Other Risks with HTML5 Client-side Databases
Part IV: New Communication Methods
Chapter 9: Securely Implementing Real-time Client-Server communication with HTML5 WebSockets
Chapter 10: Implementing Secure HTML5 Server-Sent Events
Part V: Other Features
Chapter 11: Security Considerations When Using Graphics with SVG and CANVAS
Chapter 12: Security Considerations When Using Application Cache, Web Workers, and Geolocation
Part VI: New Security Features
Chapter 13: Securely loading Third-party Content with Sandboxed Frames
Chapter 14: Supplementing Security with HTTP Response Headers
Part VII: HTML5 For Mobile
Chapter 15: Securely Embedding HTML5 in Native Mobile Applications
Chapter 16: Developing Secure Hybrid Mobile Applications
Part VIII: Tools for Building a Secure Site
Chapter 17: Using Content Security Policy to Build Secure Sites
Chapter 18: Quick Developer Reference
Chapter 2: Identifying the Most Common Web Security Problems
Part II: Cross Origin Communication Security
Chapter 3: The Evolution of Cross Origin Communication Before HTML5
Chapter 4: Securing Communication with Cross Domain Servers with HTML5 Cross Origin Requests
Chapter 5: Securing Client-side Cross Domain Communication with HTML5 Web Messaging
Part III: Client-side Storage
Chapter 6: The Evolution of Client-side Storage Before HTML5
Chapter 7: Security Considerations when Storing Client-side Data with HTML5 Web Storage
Chapter 8: Avoiding SQL Injections and Other Risks with HTML5 Client-side Databases
Part IV: New Communication Methods
Chapter 9: Securely Implementing Real-time Client-Server communication with HTML5 WebSockets
Chapter 10: Implementing Secure HTML5 Server-Sent Events
Part V: Other Features
Chapter 11: Security Considerations When Using Graphics with SVG and CANVAS
Chapter 12: Security Considerations When Using Application Cache, Web Workers, and Geolocation
Part VI: New Security Features
Chapter 13: Securely loading Third-party Content with Sandboxed Frames
Chapter 14: Supplementing Security with HTTP Response Headers
Part VII: HTML5 For Mobile
Chapter 15: Securely Embedding HTML5 in Native Mobile Applications
Chapter 16: Developing Secure Hybrid Mobile Applications
Part VIII: Tools for Building a Secure Site
Chapter 17: Using Content Security Policy to Build Secure Sites
Chapter 18: Quick Developer Reference
Notă biografică
Manish S. Saindane is currently working as a Senior Security Researcher with Gotham Digital Science. He has been working closely with several large companies in the financial, telecom, retail and IT services domain for over a decade, providing them with security solutions and helping them implement secure development practices within their organization. He has been instrumental in conceptualizing IronWASP, an open source system for web application security testing along with Lavakumar Kuppan.Manish is passionate about researching techniques to break software security and identifying ways to protect them. He has also presented at security conferences such as Black Hat and InfoSecurity India.
Caracteristici
- The go to guide for developers interested in writing secure HTML5 applications.
- Acts as a reference guide for developers looking for guidance on secure implementation of HTML5 APIs and possible security implications of using these APIs insecurely.
- Provides an unbiased view of HTML5 security and empower the readers with the necessary tools and knowledge to make the right security decisions.