Overview
In today's market, secure software is a must for consumers. Many developers, however, are not familiar with the techniques needed to produce secure code or detect existing vulnerabilities. The Software Vulnerability Guide helps developers and testers better understand the underlying security flaws in software and provides an easy-to-use reference for security bugs. Most of these bugs (and the viruses, worms, and exploits that derive from them) start out as programmer mistakes. With this guide, professional programmers and testers will learn how to find, fix, and prevent these vulnerabilities before their software reaches the market. Detailed explanations and examples are provided for each of the vulnerabilities, as well as a summary sheet that can be referenced quickly. Tools that make it easier to recognize and prevent vulnerabilities are also explored, and source code snippets, commentary, and techniques are provided in easy-to-read sidebars. This guide is a must have for today's software developers.
Synopsis
The root of computer vulnerabilities, and the proper place to address them, say Thompson (director of security technology at Security Innovation LLC) and Chase (security architect, SI Government Solutions) is at the software level. In this work, they provide advice to software developers on how to avoid the code flaws that lead to security vulnerabilities and to testers on how to detect such vulnerabilities. They discuss problems that allow system level attacks, data parsing, information disclosure, connection vulnerabilities, and browser security. The CD-ROM contains the code and projects from the book's various examples, as well as a number of open-source security testing tools. Annotation ©2005 Book News, Inc., Portland, OR