Writing Secure Code for Windows Vista(TM) (Pro - Step By Step Developer)

Get the definitive guide to writing secure code and developing more-secure applications for Windows Vista--straight from the experts. Security is one of the greatest enhancements in Windows Vista, and developers will be urged to write more secure code on the platform to support a growing customer base. This reference delivers the straight scoop from the authors who wrote the immensely popular, award-winning book Writing Secure Code. Developers get first-hand insights into design decisions and practical advice for solving real-world security issues. The book covers new features, including ACLs and BitLocker(tm), as well as enhancements to familiar concepts, such as firewalls and authentication. In addition, there are plenty of code samples in C# on the Web. Designed to complement and extend Writing Secure Code, this book is essential for developers of Windows Vista.

User review
Incredible Value
I am a C++ Developer and I was able to get my application Vista UAC compliant, with the valuable information in the book.

What was very strange to me was that I got this book for a few dollars used and in very good condition.

Being a windows developer require some patience and effort, this book compliments that effort and makes it rewarding.




User review
If only all computer books were like this one
It contains to the point but thorough information of how to write code that breaks as rarely as possible and when it does break exposes as little as possible to an attacker. At the same time the language is clear and enjoyable.

User review
A must read if you develop for Windows Vista
Initially I didn't liked Windows Vista. A resource hog, some incompatibilities,,. But I had to use it at work so I installed it and worked with it for two months. After that, I really like the security features it has, but I felt like missing more details about specific topics,,. So I decided to buy this book.

Writing Secure Code for Windows Vista comes as a, mostly C++ oriented (although contains some C# examples), `how to use all new features` book. Very well structured, with lots of code examples, best practices, direct to the topic, and one thing I liked a lot: very sincere. If something is working bad, the authors state it clearly (for example, the Windows Firewall API, which has bugs), and they even provide workarounds to avoid them.

Down to the content, the book covers a lot of topics: New safer C functions, banned APIs, new APIs, UAC, token manipulation, integrity levels, code signing, virtualization, buffer overrun defenses, IPv6, Secure Socket extensions, Windows Firewall (Vista version, of course), IE7 security mechanisms & defenses (very interesting), Windows services development best practices, protected mode API and DEP, and the new CNG (Cryptography API: Next Generation).

Even if you don't usually develop with C++ I highly recommend this book. With it you will learn a lot about all the new security features of Vista. You just need some basic knowledge of standard Windows security features and some C++/API programming.