Amazon.com: Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More: 9780596003944: John Viega, Matt Messier: Books

List Price: $74.99 Details

Save: $11.55 (15%)

$15.98 Shipping & Import Fees Deposit to Canada Details

Delivery Monday, June 26. Order within 23 hrs 34 mins

Deliver to Canada

In Stock

[{"displayPrice":"$63.44","priceAmount":63.44,"currencySymbol":"$","integerValue":"63","decimalSeparator":".","fractionalValue":"44","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"B0lPMFF4eUVNvmZIgxsUI%2B9%2F4OZa8GDwzUigWUmrvGjjL%2FBlIjjjywjZcdMPtp4eMB34DvrMq%2FG2Q8v3jSwR%2BD0LALcNKr6qriV7q163vIIxASvWI6ewyj0tBzLcK9iLQ%2BIoYkEnw%2F4%3D","locale":"en-US","buyingOptionType":"NEW","aapiBuyingOptionIndex":0},{"displayPrice":"$25.05","priceAmount":25.05,"currencySymbol":"$","integerValue":"25","decimalSeparator":".","fractionalValue":"05","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"B0lPMFF4eUVNvmZIgxsUI%2B9%2F4OZa8GDwNDAKI1DDZlTQ8m5eeTnSKKYD55zWz9MGTNuvD%2F%2FDePqVa5BD%2F0FToE0TjUwrbSyCt9cxBDvwzhb%2FwpIxfXMK6rHfHzK9wteFVIIry09sZdWMfmZkDg9scuhDgbqyHqJmzdxlGveEAWNJmxpGvkNNdI%2BoGqotgaPP","locale":"en-US","buyingOptionType":"USED","aapiBuyingOptionIndex":0},{"displayPrice":"$63.44","priceAmount":63.44,"currencySymbol":"$","integerValue":"63","decimalSeparator":".","fractionalValue":"44","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"B0lPMFF4eUVNvmZIgxsUI%2B9%2F4OZa8GDwzUigWUmrvGjjL%2FBlIjjjywjZcdMPtp4eMB34DvrMq%2FG2Q8v3jSwR%2BD0LALcNKr6qriV7q163vIIxASvWI6ewyj0tBzLcK9iLQ%2BIoYkEnw%2F4%3D","locale":"en-US","buyingOptionType":"PICKUP","aapiBuyingOptionIndex":0}]

$$63.44 () Includes selected options. Includes initial monthly payment and selected options. Details

Payment

Secure transaction

Ships from

Amazon.com

Sold by

Amazon.com

Returns

Eligible for Return, Refund or Replacement within 30 days of receipt

Support

Free Amazon product support included

Details

Payment

Secure transaction

We work hard to protect your security and privacy. Our payment security system encrypts your information during transmission. We don’t share your credit card details with third-party sellers, and we don’t sell your information to others. Learn more

Ships from

Amazon.com

Sold by

Amazon.com

Returns

Eligible for Return, Refund or Replacement within 30 days of receipt

This item can be returned in its original condition for a full refund or replacement within 30 days of receipt.

Read full return policy

Support

Free Amazon product support included

In the event your product doesn’t work as expected, or you’d like someone to walk you through set-up, Amazon offers free product support over the phone on eligible purchases for up to 90 days.
To access this option, go to Your Orders and choose Get product support.

Add a gift receipt for easy returns

Delivery Tuesday, June 27. Order within 12 hrs 8 mins

Or fastest delivery June 20 - 26

Deliver to Canada

Used: Good | Details

Sold by RNA TRADE LLC

Fulfilled by Amazon

Access codes and supplements are not guaranteed with used items.

Have one to sell?

Other Sellers on Amazon

Added

Not added

$53.90
+ $31.99 shipping

Sold by: SuperBookDeals-

Added

Not added

$65.91
+ $23.38 shipping

Sold by: Prime Deals, USA

Flip to back Flip to front

See all 2 images

Follow the Author

Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More 1st Edition

by John Viega (Author), Matt Messier (Author)

4.4 37 ratings

See all formats and editions

Price

New from

Used from

"Please retry"

—

—

Paperback

"Please retry"

$63.44

$53.90

$15.01

Kindle
$43.99 Read with Our Free App
Paperback
$25.05 - $63.44

Other options from $15.01

18 Used from $15.01

17 New from $53.90

Password sniffing, spoofing, buffer overflows, and denial of service: these are only a few of the attacks on today's computer systems and networks. At the root of this epidemic is poorly written, poorly tested, and insecure code that puts everyone at risk. Clearly, today's developers need help figuring out how to write code that attackers won't be able to exploit. But writing such code is surprisingly difficult.

Secure Programming Cookbook for C and C++ is an important new resource for developers serious about writing secure code. It contains a wealth of solutions to problems faced by those who care about the security of their applications. It covers a wide range of topics, including safe initialization, access control, input validation, symmetric and public key cryptography, cryptographic hashes and MACs, authentication and key exchange, PKI, random numbers, and anti-tampering. The rich set of code samples provided in the book's more than 200 recipes will help programmers secure the C and C++ programs they write for both Unix® (including Linux®) and Windows® environments. Readers will learn:

How to avoid common programming errors, such as buffer overflows, race conditions, and format string problems
How to properly SSL-enable applications
How to create secure channels for client-server communication without SSL
How to integrate Public Key Infrastructure (PKI) into applications
Best practices for using cryptography properly
Techniques and strategies for properly validating input to programs
How to launch programs securely
How to use file access mechanisms properly
Techniques for protecting applications from reverse engineering

The book's web site supplements the book by providing a place to post new recipes, including those written in additional languages like Perl, Java, and Python. Monthly prizes will reward the best recipes submitted by readers.

Secure Programming Cookbook for C and C++ is destined to become an essential part of any developer's library, a code companion developers will turn to again and again as they seek to protect their systems from attackers and reduce the risks they face in today's dangerous world.

ISBN-10

0596003943
ISBN-13

978-0596003944
Edition

1st
Publisher

O'Reilly Media
Publication date

August 5, 2003
Language

English
Dimensions

7 x 1.51 x 9.19 inches
Print length

792 pages
See all details

Bought Together

Frequently bought together

Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More

$63.44

In Stock.

Ships from and sold by Amazon.com.

+

Secure Coding in C and C++ (SEI Series in Software Engineering)

$52.00

In Stock.

Ships from and sold by Amazon.com.

+

CERT® C Coding Standard, Second Edition, The: 98 Rules for Developing Safe, Reliable, and Secure Systems (SEI Series in Softw

$59.99

In Stock.

Ships from and sold by Amazon.com.

Total price:

To see our price, add these items to your cart.

Try again!

Added to Cart

Choose items to buy together.

Most purchasedin this set of products
Robert Seacord
61
Paperback
$52.00
$11.81 shipping
Lowest Pricein this set of products
Steve Oualline
152
Paperback
$24.99
$11.34 shipping
Highest ratedin this set of products
Richard M Reese
202
Paperback
$32.49
$10.47 shipping
This item:
John Viega
37
Paperback
$63.44
$12.70 shipping
Jason Grembi
17
Paperback
$147.53
Only 14 left in stock - order soon.
Michael Howard
46
Paperback
$42.85
$11.51 shipping

Editorial Reviews

About the Author

John Viega, Founder and Chief Scientist of Secure Software (www.securesoftware.com), is a well-known security expert, and coauthor of Building Secure Software (Addison-Wesley) and Network Security with OpenSSL (O'Reilly). John is responsible for numerous software security tools, and is the original author of Mailman, the GNU mailing list manager. He holds a B.A. and M.S. in Computer Science from the University of Virginia. Mr. Viega is also an Adjunct Professor of Computer Science at Virginia Tech (Blacksburg, VA) and a Senior Policy Researcher at the Cyberspace Policy Institute, and he serves on the Technical Advisory Board for the Open Web Applications Security Project. He also founded a Washington, D.C. area security interest group that conducts monthly lectures presented by leading experts in the field. He is the author or coauthor of nearly 80 technical publications, including numerous refereed research papers and trade articles.

Matt Messier, Director of Engineering at Secure Software, is a security authority who has been programming for nearly two decades. Besides coauthoring Network Security with OpenSSL, Matt coauthored the Safe C String Library, RATS, and EGADS, an Entropy Gathering and Distribution System used for securely seeding pseudo-random number generators. Prior to joining Secure Software, Matt worked for IBM and Lotus, on source and assembly level debugging techniques, and operating system concepts.

Product details

Publisher ‏ : ‎ O'Reilly Media; 1st edition (August 5, 2003)
Language ‏ : ‎ English
Paperback ‏ : ‎ 792 pages
ISBN-10 ‏ : ‎ 0596003943
ISBN-13 ‏ : ‎ 978-0596003944
Item Weight ‏ : ‎ 2.74 pounds
Dimensions ‏ : ‎ 7 x 1.51 x 9.19 inches

Best Sellers Rank: #716,567 in Books (See Top 100 in Books)
- #131 in C Programming Language
- #184 in Web Encryption
- #191 in C++ Programming Language

Customer Reviews:
4.4 37 ratings

About the author

Follow authors to get new release updates, plus improved recommendations.

John Viega

Brief content visible, double tap to read full content.

Full content visible, double tap to read brief content.

John is Executive Vice President at SilverSky, the leader in cloud security solutions. John is the former editor-in-chief for IEEE Security and Privacy Magazine, and his technical work in cryptography has been standardized by NIST, the IEEE and IETF. Prior to SilverSky, John was CTO for Software-as-a-Service at McAfee.

John started out writing fiction in high school and college, but Randy Pausch (of Last Lecture Fame) convinced him to make a career in technology.

Customer reviews

4.4 out of 5

37 global ratings

5 star
4 star
3 star
2 star
1 star

How customer reviews and ratings work

Top reviews from the United States

There was a problem filtering reviews right now. Please try again later.

Computer Security is Far More Complex Than I Thought

Reviewed in the United States 🇺🇸 on May 19, 2022

Verified Purchase

This book provides insights and techniques for managing encryption
algorithms, public keys, password selection, SSL, buffer overflow and
its prevention, and many vulnerabilities that I never knew existed.

One problem that I thought I understood was the complete removal
of a file from disk. I learned that there are many utilities and appli-
cations that make hidden and unrequested file copies which are beyond
the command line to detect or to eliminate.

masterful work, loads of info, well written

Reviewed in the United States 🇺🇸 on August 9, 2012

Verified Purchase

A masterful work. Bursting with loads of useful information, always gets right to the point, has just the right density of code examples, and is extremely well organized and well written (with one exception -- see below). Should be on every expert programmer's bookshelf. Even if you never need to do crypto in your programs, get this book and at least read all the "Problem" and "Solution" sections -- it'll only take a couple of hours, and you will be much smarter after you are done. I have only two complaints. First, section 10.1 on PKI is uncharacteristically sloppy, annoyingly redundant, and in a few places literally unparseable. Second, the authors, like the authors of every security textbook I've ever read, seem to believe that real C programmers will actually use things like the safestr library instead of nul-terminated arrays in their programs. Not going to happen, folks.

2 people found this helpful

Reviewed in the United States 🇺🇸 on November 22, 2016

Verified Purchase

Detailed but a bit incomplete

Voluminous and comprehensive

Reviewed in the United States 🇺🇸 on August 17, 2003

If you are interested in encryption, you should probably get Bruce Schneier's Applied Cryptography, which is generally considered the standard summary of the field. But suppose you actually want to use some of the symmetric key or public key methods he describes? If you want to code from scratch, his book is a good starting point. But if you want to quickly avail yourself of the best existing methods and you don't want to reinvent the wheel by recoding? Also, it can be risky to do that. A mistake made in coding a crypto algorithm might render it insecure. Better to use reviewed, tested code.
If this describes your needs and you code in C or C++, then this book will be invaluable. Extensive code fragments that show how you can interface to existing crypto packages. Very detailed. You won't find theorems or any elegant maths here. No Chinese Remainder Theorem or Fermat's theorems. You have to already know or accept the theoretical underpinnings.
Given this, the book takes you into the nitty gritty of every major publicly available cryptosystem. With up to date assessments of their comparative strengths.
All of the above is aimed at application developers. The book also has sections for sysadmins of both unix and Microsoft operating systems, replete with suggestions on patching and good practice.
Don't be daunted by the book's heft. It is encyclopaedic in scope, and access is reasonably random access. The authors have striven to comprehensively span the field. You don't have to read from start to finish before you can commence using it.

18 people found this helpful

Good developer reference

Reviewed in the United States 🇺🇸 on March 22, 2006

This is a well-written and example oriented book for C/C++ programmers that covers secure programming in all aspects. I had been using this book for last one year now and It helps me as a quick reference and also real source code demonstrating practical approaches that can be incorporated into their software projects.

The book needs a little update but still helps any aspiring C/C++ programmer involved with crypto.

One person found this helpful

Amazon Customer

Bought it for one reason but ended up using it.

Reviewed in the United States 🇺🇸 on October 16, 2003

To be truthful, I bought this book because the "gang" I hang out with is mentioned in the Acknowledgments section of the book. That was the ONLY reason when I sent money to Amazon.Com and purchased it for the dusty collection on my bookshelf.
But, when I got it and chuckled over the Acknowledgements section, I started to mindlessly flip through the book. Mindless page flipping soon turned to semi-conscious scanning. Semi-conscious scanning soon turned to serious reading. I find myself reading the book more and more, jumping back and forth between sections I find interesting and useful.
As a Windows C++ programmer for in-house tools, I do not dwell much on secure programming concepts. Yes, this is very, very bad way to program, so those of you reading this review should not try it at home. This book has shown the errors of my ways, revealed security issues that I have overlooked by accident or on purpose and gave concepts and examples that I can apply in my projects.
This book is one reference that I will be going back over and over again. The authors and editors have done a wonderful job to make the reading flow nice and easy. It is also very well laid out by stating the problem you may encounter, followed by a solution and then detailed discussion section with code samples.
For any C/C++ programmer making software to be used by more than one person, this reference book is a must.
You can still read the Acknowledgments and marvel at my name on there, of course.

17 people found this helpful

Top reviews from other countries

Translate all reviews to English

Leon

Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More

Reviewed in the United Kingdom 🇬🇧 on July 9, 2012

Verified Purchase

I would consider this book essential for anyone working in this field. Some of the examples are slightly outdated and need to be updated for 64 bit tests, but regardless, all issues explained clearly and concisely. A reference bok for those who are experienced, for the rest of us an excellent tutorial.

Roberto Piccardi

ottimo libro

Reviewed in Italy 🇮🇹 on January 14, 2021

Verified Purchase

Ottimo libro per avere una cbase di crittografia

Translate review to English

Mr Misery

If secure "C" coding is your interest then this is the book for you.

Reviewed in the United Kingdom 🇬🇧 on June 11, 2020

Verified Purchase

Bought this to use for work, and have been dipping into this for ideas. There are lots of ideas.
A good book for the advanced "C" programmer.

Client d'Amazon

Beware of errata

Reviewed in France 🇫🇷 on November 16, 2019

Verified Purchase

Well written, this book gives good ideas to implement (for the few I read yet). I removed stars because code source looks not have been correctly tested/reviewed. So if you want to buy this book please also refer to errata on the O'Reilly website. This book needs a new revision.

enrico besenyei

Parfait

Reviewed in France 🇫🇷 on December 3, 2014

Verified Purchase

Non seulement ce livre a répondu à mes attentes, mais aussi il est allé largement au-delà de tout ce que j'aurais pu espérer.
Si vous êtes curieux, ce livre est vraiment fait pour vous.

Translate review to English

See all reviews

Get to Know Us

Make Money with Us

Amazon Payment Products

Let Us Help You

English $USD - U.S. Dollar United States

© 1996-2023, Amazon.com, Inc. or its affiliates