24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them Ebook

, ,
Publication: McGraw-Hill Education
 
Is my Device Supported?

You're about to purchase a Downloadable Ebook

Hi, sorry for the interruption!
We're repeating some important information here to ensure that you're making an informed purchase. Please review it.

  • Don't get caught unaware. Preview ebook and open the sample ebook on each of your intended devices before continuing.
  • You will need a Free 3rd-party application that can read the intermediate .acsm file you will receive as download. PDF/Epub format is downloaded automatically by the application thereafter. Please install the necessary software first on your intended device of use.
  • - Printing is not permitted.
    - You cannot copy text from file.
  • Refund Policy
    Refunds are not allowed after the ebook is opened so please open the ebook directly on your intended device. Refund requests should be recieved within 7 days after download is made available. Of course, if you get an incorrect ebook ( different from what is mentioned in the title) or if the ebook doesn't open on the initial device, then we'll assist with fixing the issue or get you a refund if a timely fix isn't available.
  • Customer Service
    We currently only provide ticket (online form submission) or email support. Rest assured that you're in good hands; customers like our professional service!
I have previewed the ebook and read the requirements and terms.
Cancel

Language: English
Publication Date: September 2009
File Size: 8914 Kbytes
Illustrations included

Restrictions set by Publisher:
- Text-to-speech feature not available.
- Printing is not permitted.
- You cannot copy text from file.
- Free application Adobe Digital Editions, Aldiko reader, or Bluefire reader required .
$47.15 $55.00
( 14.27% savings )

Great Prices, Always!
Change Region
 
ISBN: 9780071626767   Should I buy this Ebook?   Write a Review

Description

“What makes this book so important is that it reflects the experiences of two of the industry’s most experienced hands at getting real-world engineers to understand just what they’re being asked for when they’re asked to write secure code. The book reflects Michael Howard’s and David LeBlanc’s experience in the trenches working with developers years after code was long since shipped, informing them of problems.” —From the Foreword by Dan Kaminsky, Director of Penetration Testing, IOActive

Eradicate the Most Notorious Insecure Designs and Coding Vulnerabilities

Fully updated to cover the latest security issues, 24 Deadly Sins of Software Security reveals the most common design and coding errors and explains how to fix each one-or better yet, avoid them from the start. Michael Howard and David LeBlanc, who teach Microsoft employees and the world how to secure code, have partnered again with John Viega, who uncovered the original 19 deadly programming sins. They have completely revised the book to address the most recent vulnerabilities and have added five brand-new sins. This practical guide covers all platforms, languages, and types of applications. Eliminate these security flaws from your code:

*

SQL injection

  • Web server- and client-related vulnerabilities
  • Use of magic URLs, predictable cookies, and hidden form fields
  • Buffer overruns
  • Format string problems
  • Integer overflows
  • C++ catastrophes
  • Insecure exception handling
  • Command injection
  • Failure to handle errors
  • Information leakage
  • Race conditions
  • Poor usability
  • Not updating easily
  • Executing code with too much privilege
  • Failure to protect stored data
  • Insecure mobile code
  • Use of weak password-based systems
  • Weak random numbers
  • Using cryptography incorrectly
  • Failing to protect network traffic
  • Improper use of PKI
  • Trusting network name resolution

Recommendations:

Network Security with OpenSSL: Cryptography for Secure Communications ebook cover
Save 13.41%
Secure Programming Cookbook for C and C++ ebook cover
Save 14.4%
Beautiful Security: Leading Security Experts Explain How They Think ebook cover
Save 13.41%
CRM at the Speed of Light, Fourth Edition ebook cover
Save 19.17%
CompTIA Storage+ Quick Review Guide ebook cover
Save 13.88%
Secrets of Software Success: Management Insights from 100 Software Firms Around the World ebook cover
Save 24.73%
Demystifying the IPsec Puzzle ebook cover
Save 11.12%
Security Fundamentals for E-Commerce ebook cover
Save 11.33%
802.11 Wlans and IP Networking: Security, Qos and Mobility ebook cover
Save 11.46%

Should you buy this Ebook?

We've put together a collection of resources to help you make a decision regarding whether you should buy this Ebook from us.

  1. Is your device one of these? Ebook reading software will work on the following devices: Windows, Mac, Android 2.2+ Devices, IPad (iOS 3+), IPhone (iOS 3+), Kindle Fire. Several other devices are also supported by the software.
  2. Compare prices. Our price is $47.15. If you would like to research our competitors to see their prices. Here're some places to look:
  3. Why should you buy Ebooks from onlinebookplace.com?

    We've had 1000s of downloads so far and with over 300000+ Ebooks to choose from, onlinebookplace.com is becoming a favorite Ebook Store for many. Allow us to win you over with our competitive pricing, upfront policies and diligent customer service.

    We're Upfront:

    • Every Ebook page on onlinebookplace.com has information on restrictions that publishers have placed on the Ebook along with a clear indication of software required to read the Ebooks.
    • If ratings for an Ebook are available from one of several sources online, then we've attempted to get those to help you make a better purchasing decision about the Ebook. Reviews from Goodreads (a popular reviews site) are provided on the same if they're available.
    • In most cases, we've also attempted to get you links to the Ebook on our competitor's site so that you can compare prices with relative ease.
    • We use McAfee to scan for any vulnerabilities in the system to ensure that any information that you give us does not fall into the wrong hands.
    • We use Paypal, a trusted 3rd party payment provider to accept Payments -- your payment information doen't reside with us. Any information that does end up with us is safe.

After installing the appropriate app for your device, try a Sample Download (Sherlock Holmes from Project Gutenberg) before purchase. The sample is only for checking device compatibility.

Check below for device compatibility and any free 3rd-party software requirements. Choice of what ebook reading app to use is yours, we only present a few common apps that several customers of ours have preferred. You should be able to transfer your purchase to more than one (upto 6) compatible devices as long as your ebook-reading apps have been registered with the same Adobe ID before opening the file.

Computers/laptops/Mac

Windows/Mac PC or Laptop

Free app Adobe Digital Editions required. Note that this software is not the same as Adobe Reader.

Android

Android 2.1+

Free app Aldiko Reader or Bluefire Reader required.

Kindle Fire (and any Android based Kindle models)

Free Kindle Android app Bluefire Reader required.

IPhone/IPad

IPad or IPhone

Free app Bluefire Reader required. Kindly review their tutorial for the requirement (note that while they're talking about library ebooks, same applies to your purchased .acsm file) -- feel free to use the sample download for testing. Tutorial .

Other E-Reader

Several Other devices supported

Devices like Nook are supported via the free application Adobe Digital Editions . This software is not the same as Adobe Reader. Please check compatibility of your device before purchase.

24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them