Books+ Search Results
24 deadly sins of software security programming flaws and how to fix them
Author
Title
24 deadly sins of software security [electronic resource] : programming flaws and how to fix them / Michael Howard, David LeBlanc, and John Viega.
ISBN
0071759840
9780071626750
0071626751 (print)
Published
New York : McGraw-Hill, [2010]
Physical Description
1 online resource (xxxvii, 393 p.) : ill.
Local Notes
Access is available to the Yale community.
Notes
Print version c2010.
Description based on cover image and table of contents, viewed on January 15, 2011.
Access and use
Access restricted by licensing agreement.
Variant and related titles
Twenty four deadly sins of software security
McGraw-Hill's AccessEngineering.
SQL injection.
Web server-related vulnerabilities (XSS, XSRF, and response splitting).
Web client-related vulnerabilities (XSS).
Use of magic URLS, predictable cookies, and hidden form fields.
Buffer overruns.
Format string problems.
Integer overflows.
C++ catastrophes.
Catching exceptions.
Command injection.
Failure to handle errors correctly.
Information leakage.
Race conditions.
Poor usability.
Not updating easily.
Executing code with too much privilege.
Failure to protect stored data.
Sins of mobile code.
Use of weak password-based systems.
Weak random numbers.
Using the wrong cryptography.
Failing to protect network traffic.
Improper use of PKI, especially SSL.
Trusting network name resolution.
Other formats
Also issued in print and PDF versions.
Format
Books / Online
Language
English
Added to Catalog
August 30, 2019
Bibliography
Includes bibliographical references and index.
Contents
Part 1. Web application sins
part 2. Implementation sins
part 3. Cryptographic sins
part 4. Networking sins.
Genre/Form
Electronic books.
Internet resources.
Also listed under
Bookmark As
Citation
