- Series: Expert's Voice
- Paperback: 320 pages
- Publisher: Apress; 1st ed. edition (February 14, 2007)
- Language: English
- ISBN-10: 1590597842
- ISBN-13: 978-1590597842
- Product Dimensions: 7.5 x 0.7 x 9.2 inches
- Shipping Weight: 1.3 pounds (View shipping rates and policies)
- Average Customer Review: 4.3 out of 5 stars See all reviews (9 customer reviews)
- Amazon Best Sellers Rank: #604,454 in Books (See Top 100 in Books)
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Foundations of Security: What Every Programmer Needs to Know (Expert's Voice) Paperback – February 14, 2007
Frequently bought together
Customers who bought this item also bought
From the reviews:
"It is written based on a course for beginning programmers. … The book has three main parts: security design principles, secure programming techniques, and an introduction to cryptography. … Exercises are included at the end of each part in order to provide suggestions for getting hands-on experience." (A. Mariën, ACM Computing Reviews, Vol. 49 (5), May, 2008)
About the Author
Christoph Kern is an information security engineer at Google and was previously a senior security architect at Yodlee, a provider of technology solutions to the financial services industry. He has extensive experience in performing security design reviews and code audits, designing and developing secure applications, and helping product managers and software engineers effectively mitigate security risks in their software products.
If you are a seller for this product, would you like to suggest updates through seller support?
Top Customer Reviews
Throughout the book the authors present code examples on exploits and their defense. Even through the examples are written in different languages, the authors explain the code clearly. The reader doesn't' have to be familiar with the particular language. I haven't written anything in Java in over six years, but had no problem understand the Java examples.
If you are a new programmer or haven't read a book on security recently, this would be the book.
This easily accessible book describes common problems in an instructive manner. It explains what will and what will not work, reviews good design principles, and offers an overview of commonly used cryptographic techniques. If every developer lived by the guidelines of this book, we would be in a much better shape than we currently are.
I read a lot of security books and I think this is one of the most clearly written books I have ever read. I am not a programmer I am a software auditor / tester specifically focusing on security. I understand the security, this book helped me have a better understanding of how it applies to programming.
Although this book doesn't have all the answers (e.g. no comparison of web programming languages), web programmers will not be disappointed and my guess is that most web programmers need to read this book.
The authors work at Google and are dealing with some of the nastiest problems the Internet has to offer. They are very good communicators, have written some of the best recent papers and I'm glad to see Neil Daswani just started a blog on blogspot.
Upon completion of the book, the reader should have a good basic computer security foundation.