Innocent Code : A Security Wake-Up Call for Web Programmers

Innocent Code : A Security Wake-Up Call for Web Programmers

Editorial Reviews
Review
the security book that all web developers need to readsound adviceignore at peril (Tech Book Report, January 2004)

"achieves its aims admirably" (PC Utilities, April 2004)

should be required reading for web developers (about.com, March 2004)

if you are a web techie you will love this book, I did (Infosecurity Today, July 04)

Book Description

This concise and practical book shows where code vulnerabilities lie-without delving into the specifics of each system architecture, programming or scripting language, or application-and how best to fix them
Based on real-world situations taken from the author's experiences of tracking coding mistakes at major financial institutions
Covers SQL injection attacks, cross-site scripting, data manipulation in order to bypass authorization, and other attacks that work because of missing pieces of code
Shows developers how to change their mindset from Web site construction to Web site destruction in order to find dangerous code

Innocent Code : A Security Wake-Up Call for Web Programmers

Innocent Code : A Security Wake-Up Call for Web Programmers,Sverre H. Huseby,John Wiley & Sons,0470857447,Computer Books And Software,Computer Data Security,Computer Programming,Computer networks,Computer security,Computers,Computers - Computer Security,Computers - General Information,Internet - General,Programming - General,Security - General,Security measures,World Wide Web,Computers / Security

Fun Book:

Fun Book

Recommended Books