Secure Software Design
- 9h 18m
- Charless N. Thies, Theodor Richardson
- Jones and Bartlett Learning
- 2013
With the multitude of existing software attacks that are known to date, and the number that will continue to emerge, software security is in a reactive state and many have predicted that it will remain that way for the foreseeable future. Secure Software Design seeks to change that opinion by presenting a practical guide to establishing proactive software security. This book is geared toward the student, the software developer, and the manager to bring a new way of thinking to secure software design. The focus of this book is on analyzing risks, understanding likely points of attack, and predeciding how software will deal with the attacks that will inevitably arise. By looking at the systemic threats in any deployment environment and discussing the vulnerabilities of various applications, this book will show you how to construct software that can deal with both known and unknown attacks instead of waiting for catastrophe and the cleanup efforts of tomorrow. Hands-on examples and simulated cases for the novice and the professional support the development process by demonstrating the principles presented wherever applicable.
In this Book
-
Introduction
-
Current and Emerging Threats
-
The Network Environment
-
The Operating System Environment
-
The Database Environment
-
Programming Languages
-
Security Requirements Planning
-
Vulnerability Mapping
-
Development and Implementation
-
Application Review and Testing
-
Incorporating SSD with the SDLC
-
Personnel Training
-
A Culture of Security
-
Web Application Threats
-
Secure Data Management
-
Zero Day and Beyond
