Software Security : Building Security In
|
| |
ISBN |
0321356705 |
|
Release Date |
23 January 2006 |
|
Category |
Software Engineering |
|
Tags |
"software security",
security,
building,
0321356705,
gary mcgraw,
software testing,
mcgraw,
software estimation,
software engineering,
database security,
"building security in",
security log,
secur,
mcgraw hill,
|
|
This book @Amazon |
View |
|
Description
Beginning where the best-selling book Building Secure Software left off, Software Security teaches you how to put software security into practice.The software security best practices, or touchpoints, described in this book have their basis in good software engineering and involve explicitly pondering security throughout the software development lifecycle. This means knowing and understanding common risks (including implementation bugsand architectural flaws), designing for security, and subjecting all software artifacts to thorough, objective risk analyses and testing.
Software Security is about putting the touchpoints to work for you. Because you can apply these touchpoints to the software artifacts you already produce as you develop software, you can adopt this book's methods without radically changing the way you work. Inside you'll find detailed explanations of
- Risk management frameworks and processes
- Code review using static analysis tools
- Architectural risk analysis
- Penetration testing
- Security testing
- Abuse case development
In addition to the touchpoints, Software Security covers knowledge management, training and awareness, and enterprise-level software security programs.
Now that the world agrees that software security is central to computer security, it is time to put philosophy into practice. Create your own secure development lifecycle by enhancing your existing software development lifecycle with the touchpoints described in this book. Let this expert author show you how to build more secure software by building security in. |
Other books on Software Engineering
Software Product Management and Pricing: Key Success Factors for Software Organizations
Software Engineering: Effective Teaching and Learning Approaches and Practices
Architecting Secure Software Systems
Adoption-centric Usability Engineering: Systematic Deployment, Assessment and Improvement of Usability Methods in Software Engineering
A Concise Introduction to Software Engineering (Undergraduate Topics in Computer Science)
The Object-Oriented Thought Process (3rd Edition) (Developer's Library)
Software Process and Product Measurement: International Conference, IWSMMENSURA 2007, Palma de Mallorca, Spain, November 5-8, 2007, Revised Papers (Lecture Notes in Computer Science)
Software Process Improvement: 15th European Conference, EuroSPI 2008, Dublin, Ireland, September 3-5, 2008, Proceedings (Communications in Computer and Information Science)
Clean Code: A Handbook of Agile Software Craftsmanship (Robert C. Martin Series)
Modeling Business Objects with XML Schema (The Morgan Kaufmann Series in Software Engineering and Programming)
Apache JMeter
Software Engineering for Modern Web Applications: Methodologies and Technologies
CMMI Distilled: A Practical Introduction to Integrated Process Improvement (3rd Edition) (The SEI Series in Software Engineering)
Software Security Engineering: A Guide for Project Managers (The SEI Series in Software Engineering)
Designing and Engineering Time: The Psychology of Time Perception in Software
|
|
