Designing Secure Software: A Guide for Developers. Loren Kohnfelder
690 ₴
- В наявності
- Код: LB-0023154
+380 (93) 966-47-74
- +380 (97) 060-75-89Viber
Designing Secure Software: A Guide for Developers. Loren Kohnfelder
690 ₴
В наявностіУ компанії підключені електронні платежі. Тепер ви можете купити будь-який товар не покидаючи сайту.
Законом не передбачено повернення та обмін даного товару належної якості
Опис
Характеристики
Інформація для замовлення
От издателя
What every software professional should know about security.
Designing Secure Software consolidates Loren Kohnfelder’s more than twenty years of experience into a concise, elegant guide to improving the security of technology products. Written for a wide range of software professionals, it emphasizes building security into software design early and involving the entire team in the process.
The book begins with a discussion of core concepts like trust, threats, mitigation, secure design patterns, and cryptography. The second part, perhaps this book’s most unique and important contribution to the field, covers the process of designing and reviewing a software design with security considerations in mind. The final section details the most common coding flaws that create vulnerabilities, making copious use of code snippets written in C and Python to illustrate implementation vulnerabilities.
You’ll learn how to:
- Identify important assets, the attack surface, and the trust boundaries in a system
- Evaluate the effectiveness of various threat mitigation candidates
- Work with well-known secure coding patterns and libraries
- Understand and prevent vulnerabilities like XSS and CSRF, memory flaws, and more
- Use security testing to proactively identify vulnerabilities introduced into code
- Review a software design for security flaws effectively and without judgment
Kohnfelder’s career, spanning decades at Microsoft and Google, introduced numerous software security initiatives, including the co-creation of the STRIDE threat modeling framework used widely today. This book is a modern, pragmatic consolidation of his best practices, insights, and ideas about the future of software.
About the Author
Loren Kohnfelder has over 20 years of experience working in the security industry for companies like Microsoft and Google. At Microsoft, he was a key contributor to the industry’s first formalized proactive security process methodology, and program-managed the .NET platform security effort. He was also a key contributor to the first organized approach to security by any major software platform company. At Google he worked as a software engineer on the Security team and as a founding member of the Privacy team, performing numerous security design reviews of large-scale complex real-world commercial platforms and systems, while working on various projects as a developer. Now retired, Kohnfelder shares his unique experience in industry through this book.
| Характеристики обкладинки | |
|---|---|
| Обкладинка | М'яка |
| Основні | |
| Мова видання | Англійська |
| Користувальницькі характеристики | |
| Автори | Loren Kohnfelder |
| Рік видання | 2021 2025 |
| Видавництво | No Starch Press |
| Ілюстрації | Чорно-білі |
| Кількість сторінок | 312 |
| Тип бумаги | Офсетний |
| Формат (розмір) | 165х235 мм |
- Ціна: 690 ₴
