19 Deadly Sins of Software Security: Programming Flaws and How to Fix ThemThis essential book for all software developers--regardless of platform, language, or type of application--outlines the “19 deadly sins” of software security and shows how to fix each one. Best-selling authors Michael Howard and David LeBlanc, who teach Microsoft employees how to secure code, have partnered with John Viega, the man who uncovered the 19 deadly programming sins to write this much-needed book. Coverage includes:
|
Contents
Spotting the Sin Pattern | 9 |
Other Resources | 15 |
Integer Overflows | 18 |
Copyright | |
32 other sections not shown
Common terms and phrases
19 Deadly Sins access controls allow application ASP.NET block cipher browser buffer overrun byte C/C++ catch ccnum certificate char client CODE REVIEW command injection connection create CRLs CRNG Cross-Site Scripting cryptographic database default denial of service e-mail encode encryption error EXAMPLE SINS EXTRA DEFENSIVE MEASURES Failing filename format string function handle hash HMAC implementation integer overflows Internet IPSec issues Java key exchange login look Magic URLs message authentication Microsoft NULL operating system output password protocol PBKDF2 Perl printf problem protect public key query race conditions random numbers REDEMPTION STEPS regular expressions risk secret data server Sins of Software Software Security Software Security OVERVIEW SQL injection SSL/TLS stream cipher Stunnel sure there's things trust UNIX unsigned user input username valid Visual Basic Visual Basic NET Windows write