Home | Amazing | Today | Tags | Publishers | Years | Account | Search 
Secure Programming with Static Analysis (Addison-Wesley Software Security Series)

Buy
The First Expert Guide to Static Analysis for Software Security!

 

Creating secure code requires more than just good intentions. Programmers need to know that their code will be safe in an almost infinite number of scenarios and configurations. Static source code analysis gives users the ability to review their work with a fine-toothed comb and uncover the kinds of errors that lead directly to security vulnerabilities. Now, there’s a complete guide to static analysis: how it works, how to integrate it into the software development processes, and how to make the most of it during security code review. Static analysis experts Brian Chess and Jacob West look at the most common types of security defects that occur today. They illustrate main points using Java and C code examples taken from real-world security incidents, showing how coding errors are exploited, how they could have been prevented, and how static analysis can rapidly uncover similar mistakes. This book is for everyone concerned with building more secure software: developers, security engineers, analysts, and testers.

 

About the Author


Brian Chess is a founder of Fortify Software. He currently serves as Fortify’s Chief Scientist, where his work focuses on practical methods for creating secure systems. Brian holds a Ph.D. in Computer Engineering from the University of California at Santa Cruz, where he studied the application of static analysis to the problem of finding security-relevant defects in source code. Before settling on security, Brian spent a decade in Silicon Valley working at huge companies and small startups. He has done research on a broad set of topics, ranging from integrated circuit design all the way to delivering software as a service. He lives in Mountain View, California.

 

Jacob West manages Fortify Software’s Security Research Group, which is responsible for building security knowledge into Fortify’s products. Jacob brings expertise in numerous programming languages, frameworks, and styles together with knowledge about how real-world systems can fail. Before joining Fortify, Jacob worked with Professor David Wagner at the

University of California at Berkeley to develop MOPS (MOdel Checking Programs for Security properties), a static analysis tool used to discover security vulnerabilities in C programs. When he is away from the keyboard, Jacob spends time speaking at conferences and working with customers to advance their understanding of software security. He lives in San Francisco, California.

(HTML tags aren't allowed.)

InstallAnywhere Tutorial and Reference Guide
InstallAnywhere Tutorial and Reference Guide

Software installation and deployment made simple--that's the promise of InstallAnywhere from Zero G Software. Are you harnessing the full potential of InstallAnywhere in your software installation project? InstallAnywhere Tutorial and Reference Guide ...

How Deep Sea Divers Use Math (Math in the Real World)
How Deep Sea Divers Use Math (Math in the Real World)

With a jump off the edge of a boat, deep sea divers enter another world. There is much to explore, since oceans cover more than 70 percent of Earth’s surface. Many types of scientists study the oceans. There are also people who dive to do their jobs underwater—or dive just for fun. These people all use math before, during, and after...

96 Great Interview Questions to Ask Before You Hire
96 Great Interview Questions to Ask Before You Hire
Once upon a time, there was a general manager in a downtown high-rise who had the final say over all new hires at her location. Although she realized how critical it was to identify and hire the best and the brightest talent for her firm, she really didn’t like interviewing all that much. First, she felt fairly...

Canon EOS Rebel T2i / 550D: From Snapshots to Great Shots
Canon EOS Rebel T2i / 550D: From Snapshots to Great Shots

Now that you’ve bought the amazing Canon EOS Rebel T2i/550D, you need a book that goes beyond a tour of the camera’s features to show you exactly how to use the Rebel to take great pictures. With Canon EOS Rebel T2i/550D: From Snapshots to Great Shots, you get the perfect blend of photography instruction and camera...

Machine Learning Projects for .NET Developers
Machine Learning Projects for .NET Developers

Machine Learning Projects for .NET Developers shows you how to build smarter .NET applications that learn from data, using simple algorithms and techniques that can be applied to a wide range of real-world problems. You’ll code each project in the familiar setting of Visual Studio, while the machine learning logic uses F#, a...

Software Modeling and Design: UML, Use Cases, Patterns, and Software Architectures
Software Modeling and Design: UML, Use Cases, Patterns, and Software Architectures

This book describes a use case–driven UML-based method for the modeling and design of software architectures, including object-oriented software architectures, client/server software architectures, service-oriented architectures, componentbased software architectures, concurrent and real-time software architectures, and software...

©2021 LearnIT (support@pdfchm.net) - Privacy Policy