Sign-In
Cart
Security-Driven Software Development: Learn to analyze and mitigate risks in your software projects
Paperback
ISBN13: 9781835462836
Publisher: Packt Publishing
Published: Mar 15 2024
Pages: 262
Weight: 1.00
Height: 0.55 Width: 7.50 Depth: 9.25
Language: English
Trace security requirements through each development phase, mitigating multiple-layer attacks with practical examples, and emerge equipped with the skills to build resilient applications
Key Features- Explore the practical application of secure software development methodologies
- Model security vulnerabilities throughout the software development lifecycle (SDLC)
- Develop the skills to trace requirements, from requirements gathering through to implementation
- Purchase of the print or Kindle book includes a free PDF eBook
Extend your software development skills to integrate security into every aspect of your projects. Perfect for any programmer or developer working on mission-critical applications, this hands-on guide helps you adopt secure software development practices. Explore core concepts like security specifi cation, modeling, and threat mitigation with the iterative approach of this book that allows you to trace security requirements through each phase of software development. You won't stop at the basics; you'll delve into multiple-layer att acks and develop the mindset to prevent them. Through an example application project involving an entertainment ticketing software system, you'll look at high-profi le security incidents that have aff ected popular music stars and performers. Drawing from the author's decades of experience building secure applications in this domain, this book off ers comprehensive techniques where problem-solving meets practicality for secure development.
By the end of this book, you'll have gained the expertise to systematically secure software projects, from crafting robust security specifi cations to adeptly mitigating multifaceted threats, ensuring your applications stand resilient in the face of evolving cybersecurity challenges.
What you will learn- Find out non-functional requirements crucial for software security, performance, and reliability
- Develop the skills to identify and model vulnerabilities in software design and analysis
- Analyze and model various threat vectors that pose risks to software applications
- Acquire strategies to mitigate security threats specific to web applications
- Address threats to the database layer of an application
- Trace non-functional requirements through secure software design
Many software development jobs require developing, maintaining, enhancing, administering, and defending software applications, websites, and scripts. This book is designed for software developers and web developers seeking to excel in these roles, offering concise explanations and applied example use-cases.
Table of Contents- Security Principles
- Designing a Secure Functional Model
- Designing a Secure Object Model
- Designing a Secure Dynamic Model
- Designing a Secure System Model
- Threat Modeling
- Authentication and Authorization
- Input Validation and Sanitization
- Standard Web Application Vulnerabilities
- Database Security
- Unit Testing
- Regression Testing
- Integration, System, and Acceptance Testing
- Software Penetration Testing
Also from
Olmsted, Aspen
Also in
Computer Security
Spies, Lies, and Cybercrime: Cybersecurity Tactics to Outsmart Hackers and Disarm Scammers
O'Neill, Eric
Hardcover
Digital Ethics in the Age of AI: Navigating the ethical frontier today and beyond
Mehan, Julie
Paperback
The Cybernetic Society: How Humans and Machines Will Shape the Future Together
Husain, Amir
Hardcover
Linux Basics for Hackers, 2nd Edition: Getting Started with Networking, Scripting, and Security in Kali
Occupytheweb
Paperback
Isc2 Cissp Certified Information Systems Security Professional Official Study Guide & Practice Tests Bundle
Gibson, Darril
Chapple, Mike
Stewart, James Michael
Paperback
Password Logbook (Hip Floral): Keep Track of Usernames, Passwords, Web Addresses in One Easy and Organized Location
Editors of Rock Point
Hardcover
Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers
Greenberg, Andy
Paperback
Comptia A+ Complete Study Guide, 2-Volume Set: Volume 1 Core 1 Exam 220-1201 and Volume 2 Core 2 Exam 220-1202
Docter, Quentin
Buhagiar, Jon
Paperback
Chasing Shadows: Cyber Espionage, Subversion, and the Global Fight for Democracy
Deibert, Ronald J.
Hardcover
Comptia Security+ Study Guide with Over 500 Practice Test Questions: Exam Sy0-701
Seidl, David
Chapple, Mike
Paperback
Raising Humans in a Digital World: Helping Kids Build a Healthy Relationship with Technology
Graber, Diana
Paperback
Countdown to Zero Day: Stuxnet and the Launch of the World's First Digital Weapon
Zetter, Kim
Paperback
Data Engineering for Cybersecurity: Build Secure Data Pipelines with Free and Open-Source Tools
Bonifield, James
Paperback
Cult of the Dead Cow: How the Original Hacking Supergroup Might Just Save the World
Menn, Joseph
Paperback
The Future of Hacking: The Rise of Cybercrime and the Fight to Keep Us Safe
Scherling, Laura S.
Hardcover
Dragnet Nation: A Quest for Privacy, Security, and Freedom in a World of Relentless Surveillance
Angwin, Julia
Paperback
Isc2 Cissp Certified Information Systems Security Professional Official Study Guide
Stewart, James Michael
Gibson, Darril
Chapple, Mike
Paperback
Hacking and Security: The Comprehensive Guide to Penetration Testing and Cybersecurity
Kloep, Peter
Kofler, Michael
Gebeshuber, Klaus
Paperback
Serious Cryptography, 2nd Edition: A Practical Introduction to Modern Encryption
Aumasson, Jean-Philippe
Paperback
Tor: Tor and the Deep Web: A Guide to Become Anonymous Online, Conceal Your IP Address, Block NSA Spying and Hack!
Welsh, Joshua
Paperback
Internet Password Logbook (Red Leatherette): Keep Track of Usernames, Passwords, Web Addresses in One Easy and Organized Location
Editors of Rock Point
Hardcover
A Hacker's Mind: How the Powerful Bend Society's Rules, and How to Bend Them Back
Schneier, Bruce
Paperback
Comptia A+ Complete Certification Kit: Core 1 Exam 220-1201 and Core 2 Exam 220-1202
McMillan, Troy
Docter, Quentin
Buhagiar, Jon
Paperback
Comptia A+ Complete Practice Tests: Core 1 Exam 220-1201 and Core 2 Exam 220-1202
O'Shea, Audrey
Paperback
Humorous Cryptograms: 300 Large Print Puzzles To Keep You Entertained (Large Print Edition)
Nest, Game
Paperback
Shit I Can't Remember: Keep track of usernames, passwords, web addresses in one easy & organized location
Books, Family's
Paperback
Linux Basics for Hackers: Getting Started with Networking, Scripting, and Security in Kali
Occupytheweb
Paperback
Hacking Exposed Industrial Control Systems: ICS and Scada Security Secrets & Solutions
Shbeeb, Aaron
Bodungen, Clint
Singer, Bryan
Paperback
Comptia A+ Complete Review Guide: Core 1 Exam 220-1201 and Core 2 Exam 220-1202
McMillan, Troy
Paperback
Cyber War: The Next Threat to National Security and What to Do about It
Clarke, Richard A.
Knake, Robert
Paperback
Faik: A Practical Guide to Living in a World of Deepfakes, Disinformation, and Ai-Generated Deceptions
Carpenter, Perry
Hardcover
Container Security: Fundamental Technology Concepts That Protect Cloud Native Applications
Rice, Liz
Paperback
Cybersecurity for Everyone: A Human-Centered Approach to Protecting Yourself and Your Community
Olieslaeger, Cathy
Paperback
Mobile Forensic Investigations: A Guide to Evidence Collection, Analysis, and Presentation, Second Edition
Reiber, Lee
Paperback
Hacking: Computer Hacking for beginners, how to hack, and understanding computer security!
Dodson, Adam
Hardcover
Blown to Bits: Your Life, Liberty, and Happiness After the Digital Explosion
Ledeen, Ken
Lewis, Harry
Abelson, Hal
Paperback
AWS Certified Security Study Guide: Specialty (Scs-C02) Exam
Goldfarb, Dario Lucas
Mu¿oz, Mauricio
Moraes, Alexandre M. S. P.
Paperback
Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning
Lyon, Gordon
Fyodor
Paperback
Cult of the Dead Cow: How the Original Hacking Supergroup Might Just Save the World
Menn, Joseph
Paperback
Governance, Risk, and Compliance (GRC) in Cybersecurity: All you need to know
Relington, James
Paperback
Cyber Threat Hunters Handbook: Applying advanced analytics, automation, and collaborative intelligence for digital defense (English Edition)
Pereira Quiceno, David F.
Paperback
Comptia A+ Certmike: Prepare. Practice. Pass the Test! Get Certified!: Core 2 Exam 220-1202
Chapple, Mike
Paperback
The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws
Stuttard, Dafydd
Pinto, Marcus
Paperback
Locksport: A Hackers Guide to Lockpicking, Impressioning, and Safe Cracking
Belgers, Walter
Weyers, Jos
Burrough, Matt
Paperback
Crypto Conned My 200K Nightmare: And 10 Key Steps To Safeguard Your Future
Holliday, Ed Doc
Paperback
Web Application Security: Exploitation and Countermeasures for Modern Web Applications
Hoffman, Andrew
Paperback
Comptia A+ Certmike: Prepare. Practice. Pass the Test! Get Certified!: Core 1 Exam 220-1201
Chapple, Mike
Paperback
Cybersecurity - Attack and Defense Strategies - Third Edition: Improve your security posture to mitigate risks and prevent attackers from infiltrating
Ozkaya, Erdal
Diogenes, Yuri
Paperback
Esclavos del Algoritmo. Manual de Resistencia En La Era de la Inteligencia Artificial / Slaves of the Algorithm
de Rivera, Laura G.
Paperback
Cybersecurity for Everyone: Securing your home or small business network
Sadler, Terence L.
Paperback
Cisa Certified Information Systems Auditor Study Guide: Covers 2024 - 2029 Exam Objectives
Chapple, Mike
Gregory, Peter H.
Paperback
Hacking & Tor: The Complete Beginners Guide To Hacking, Tor, & Accessing The Deep Web & Dark Web
Jones, Jack
Paperback
Certificate of Cloud Security Knowledge (Ccsk V5) Study Guide: In-Depth Guidance and Practice
Thompson, Graham
Paperback
Principles of AI Governance and Model Risk Management: Master the Techniques for Ethical and Transparent AI Systems
Sayles, James
Paperback
The Art of Deception: Controlling the Human Element of Security
Mitnick, Kevin D.
Simon, William L.
Paperback
Learn Computer Forensics - Second Edition: Your one-stop guide to searching, analyzing, acquiring, and securing digital evidence
Oettinger, William
Paperback
Wtf Is My Password: Keep track of usernames, passwords, web addresses in one easy & organized location - Orange Cover
Pray, Norman M.
Paperback
Mastering Palo Alto Networks - Second Edition: Build, configure, and deploy network solutions for your infrastructure using features of PAN-OS
'Reaper', Tom Piens Aka
Paperback
Securing the Digital Frontier: Cyber Security for Responsible Citizens and Strategic Thinkers
Martin, Andrew
Hardcover
Ghidra Software Reverse-Engineering for Beginners - Second Edition: Master the art of debugging, from understanding code to mitigating threats
Pérez, David Álvarez
Tiwari, Ravikant
Paperback
Understanding the Digital World: What You Need to Know about Computers, the Internet, Privacy, and Security, Second Edition
Kernighan, Brian W.
Paperback
Cism Certified Information Security Manager All-In-One Exam Guide [With CD (Audio)]
Gregory, Peter H.
Paperback
The Mathematics of Secrets: Cryptography from Caesar Ciphers to Digital Encryption
Holden, Joshua
Paperback
Identity Security for Software Development: Best Practices That Every Developer Must Know
Ailon, Uzi
Barker, Matt
Walsh, John
Paperback
Understand the Cyber Attacker Mindset: Build a Strategic Security Programme to Counteract Threats
Armstrong-Smith, Sarah
Paperback
Building Secure and Reliable Systems: Best Practices for Designing, Implementing, and Maintaining Systems
Beyer, Betsy
Adkins, Heather
Blankinship, Paul
Paperback
Building a Career in Cybersecurity: The Strategy and Skills You Need to Succeed
Diogenes, Yuri
Paperback
Gray Hat Hacking: The Ethical Hacker's Handbook, Sixth Edition
Sims, Stephen
Harper, Allen
Linn, Ryan
Paperback
The Online World, What You Think You Know and What You Don't: 4 Critical Tools for Raising Kids in the Digital Age
Mankarious, Rania
Paperback
Ethical Hacking for Beginners: A Step by Step Guide for you to Learn the Fundamentals of CyberSecurity and Hacking
Nastase, Ramon Adrian
Paperback
SSL/TLS Under Lock and Key: A Guide to Understanding SSL/TLS Cryptography
Baka, Paul
Schatten, Jeremy
Paperback
Firewalls Don't Stop Dragons: A Step-By-Step Guide to Computer Security and Privacy for Non-Techies
Parker, Carey
Paperback
Practical Cybersecurity Architecture - Second Edition: A guide to creating and implementing robust designs for cybersecurity architects
Kelley, Diana
Moyle, Ed
Paperback
Logical Investigative Methods: Critical Thinking and Reasoning for Successful Investigations
Girod, Robert J.
Paperback
Hacking Etico 101 - Cómo hackear profesionalmente en 21 días o menos!: 2da Edición. Revisada y Actualizada a Kali 2.0.
Astudillo B., Karina
Paperback
Intelligent Continuous Security: Ai-Enabled Transformation for Seamless Protection
Hornbeek, Marc
Paperback
Hands on Hacking: Become an Expert at Next Gen Penetration Testing and Purple Teaming
Hickey, Matthew
Arcuri, Jennifer
Paperback
Redefining Hacking: A Comprehensive Guide to Red Teaming and Bug Bounty Hunting in an Ai-Driven World
Lazzara, Savannah
Thurner, Wesley
Santos, Omar
Paperback
Iapp Cipp / Us Certified Information Privacy Professional Study Guide
Shelley, Joe
Chapple, Mike
Paperback
Achieve Comptia Security+ Sy0-701 Exam Success: The Concise Certification Guide for Today's Busy Professional
Edwards, Jason
Paperback
Network Programmability and Automation: Skills for the Next-Generation Network Engineer
Adell, Christian
Lowe, Scott S.
Oswalt, Matt
Paperback