$25.37 with 49 percent savings

List Price: $49.99

No Import Fees Deposit & $20.80 Shipping to Finland Details

Delivery Thursday, July 4. Order within 8 hrs 21 mins

Or fastest delivery Tuesday, June 25

Deliver to Finland

Only 1 left in stock - order soon.

$$25.37 () Includes selected options. Includes initial monthly payment and selected options. Details

Ships from

Amazon

Ships from

Amazon

Sold by

ALTUNDAS02

Sold by

ALTUNDAS02

Returns

Eligible for Return, Refund or Replacement within 30 days of receipt

Returns

Eligible for Return, Refund or Replacement within 30 days of receipt

This item can be returned in its original condition for a full refund or replacement within 30 days of receipt.

Read full return policy

Payment

Secure transaction

Payment

Secure transaction

We work hard to protect your security and privacy. Our payment security system encrypts your information during transmission. We don’t share your credit card details with third-party sellers, and we don’t sell your information to others. Learn more

Details

Add a gift receipt for easy returns

$19.66

Delivery June 28 - July 12

Or fastest delivery June 19 - 25

Deliver to Finland

$$25.37 () Includes selected options. Includes initial monthly payment and selected options. Details

Access codes and supplements are not guaranteed with used items.

Enhancements you chose aren't available for this seller. Details

${cardName} not available for the seller you chose

${cardName} unavailable for quantities greater than ${maxQuantity}.

Sold by saveherenow and Fulfilled by Amazon.

Other sellers on Amazon

New & Used (30) from $19.66

Image Unavailable

Image not available for
Color:

To view this video download Flash Player

Follow the authors

Writing Secure Code, Second Edition 2nd ed. Edition

by Michael Howard (Author), David LeBlanc (Author)

4.5 62 ratings

Part of: Developer Best Practices (23 books)

See all formats and editions

Sorry, there was a problem loading this page. Try again.

{"desktop_buybox_group_1":[{"displayPrice":"$25.37","priceAmount":25.37,"currencySymbol":"$","integerValue":"25","decimalSeparator":".","fractionalValue":"37","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"K2S20TO5lnFjnNRH22LsFm31PyxnbjOBxctJfu3zVJwESNgJ8xitQCh65P0kXm7ZXw1RSBlSH1BwPW0%2BG%2B38b75qPkOLNVcuSa2IsrDZeXqueCLyLcAXqpah4B4pCQipBPquTezb443%2Bqn1h08Uy%2B0DzmvjgbFqXBZv1ApdTTVcojSv7iOBEMao6qPnsmnpb","locale":"en-US","buyingOptionType":"NEW","aapiBuyingOptionIndex":0}, {"displayPrice":"$19.66","priceAmount":19.66,"currencySymbol":"$","integerValue":"19","decimalSeparator":".","fractionalValue":"66","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"K2S20TO5lnFjnNRH22LsFm31PyxnbjOBWVxytMcyuXXqS2Ora4WKxIzCBJFprF79ziY9acGKv8bb5pJGRpv2wyq0tAZ%2BRVZrBFXbpFNH2ArB5KZ61zLOWArrto4oiCAtLp0CNowARFz%2FWEXlBQYQjQss%2BOb%2Fz6GIx7zTto9%2BbWtDfoPl8h4K5Rq4Two3nRa0","locale":"en-US","buyingOptionType":"USED","aapiBuyingOptionIndex":1}]}

Purchase options and add-ons

Keep black-hat hackers at bay with the tips and techniques in this entertaining, eye-opening book! Developers will learn how to padlock their applications throughout the entire development process—from designing secure applications to writing robust code that can withstand repeated attacks to testing applications for security flaws. Easily digested chapters reveal proven principles, strategies, and coding techniques. The authors—two battle-scarred veterans who have solved some of the industry’s toughest security problems—provide sample code in several languages. This edition includes updated information about threat modeling, designing a security process, international issues, file-system issues, adding privacy to applications, and performing security code reviews. It also includes enhanced coverage of buffer overruns, Microsoft® .NET security, and Microsoft ActiveX® development, plus practical checklists for developers, testers, and program managers.

ISBN-10

0735617228
ISBN-13

978-0735617223
Edition

2nd ed.
Publisher

Microsoft Press
Publication date

January 4, 2003
Part of series

Developer Best Practices
Language

English
Dimensions

7.5 x 2 x 9 inches
Print length

798 pages
See all details

Frequently bought together

$25.37

Get it as soon as Thursday, Jul 4

Only 1 left in stock - order soon.

Sold by ALTUNDAS02 and ships from Amazon Fulfillment.

+

Code Complete: A Practical Handbook of Software Construction, Second Edition

$33.77

In Stock

Ships from and sold by Amazon.com.

+

The Pragmatic Programmer: Your Journey To Mastery, 20th Anniversary Edition (2nd Edition)

$39.99

In Stock

Ships from and sold by Amazon.com.

Total price:

To see our price, add these items to your cart.

Try again!

Details

Added to Cart

Some of these items ship sooner than the others.

Show details Hide details

Choose items to buy together.

Steve McConnell
1,263
Paperback
$33.77
$21.67 shipping
Loren Kohnfelder
24
Paperback
$30.26
$16.55 shipping
Only 2 left in stock (more on the way).
Brian W. Kernighan
4,050
Paperback
in C Programming Language
$60.30
$16.05 shipping
Karl Wiegers
311
Paperback
$37.51
$18.93 shipping
Michael Howard
50
Paperback
$42.39
$17.73 shipping
Jon Erickson
1,441
Paperback
$30.16
$18.18 shipping

Editorial Reviews

About the Author

Michael Howard, CISSP, is a leading security expert. He is a senior security program manager at Microsoft® and the coauthor of The Software Security Development Lifecycle. Michael has worked on Windows security since 1992 and now focuses on secure design, programming, and testing techniques. He is the consulting editor for the Secure Software Development Series of books by Microsoft Press.

David LeBlanc, Ph.D., is a founding member of the Trustworthy Computing Initiative at Microsoft®. He has been developing solutions for computing security issues since 1992 and has created award-winning tools for assessing network security and uncovering security vulnerabilities. David is a senior developer in the Microsoft Office Trustworthy Computing group.

Product details

Publisher ‏ : ‎ Microsoft Press; 2nd ed. edition (January 4, 2003)
Language ‏ : ‎ English
Paperback ‏ : ‎ 798 pages
ISBN-10 ‏ : ‎ 0735617228
ISBN-13 ‏ : ‎ 978-0735617223
Item Weight ‏ : ‎ 2.92 pounds
Dimensions ‏ : ‎ 7.5 x 2 x 9 inches

Best Sellers Rank: #325,875 in Books (See Top 100 in Books)
- #353 in Software Development (Books)
- #877 in Computer Software (Books)
- #2,818 in Mathematics (Books)

Customer Reviews:
4.5 62 ratings

Brief content visible, double tap to read full content.

Full content visible, double tap to read brief content.

Videos

Help others learn more about this product by uploading a video!

Upload your video

About the authors

Follow authors to get new release updates, plus improved recommendations.

David LeBlanc
Brief content visible, double tap to read full content.
Full content visible, double tap to read brief content.
Discover more of the author’s books, see similar authors, read author blogs and more
See more on the author's page
Michael Howard
Brief content visible, double tap to read full content.
Full content visible, double tap to read brief content.
Discover more of the author’s books, see similar authors, read author blogs and more
See more on the author's page

Customer reviews

4.5 out of 5

62 global ratings

1 star

0%

How customer reviews and ratings work

Sort reviews by

Top reviews from the United States

There was a problem filtering reviews right now. Please try again later.

J. Silberstein

An eye opener

Reviewed in the United States on June 21, 2006

Verified Purchase

You think your data is safe, your website secured, your code foolproof.... think again. If you haven't read this book, probably none of the above are true. This book is written with a hacker's mind. It reveals and elaborates on the most common and not so common volnurabilities of computer and web applications. I am glad I read this book and used the information to plug the holes at a client's web application, so when one of their laptops was later compromised, no harm was done to their data or IT infrastructure.

2 people found this helpful

Helpful

Ralyn Gibbons

Excellent

Reviewed in the United States on July 17, 2013

Verified Purchase

I opened the box with hesitation as I have been burned purchasing used books before, but to my surprise it was in excellent condition. The information will be of great help to me. Thank you for selling product that is true to the prescription.

Helpful

Clifton R Liles

No problems, good experience.

Reviewed in the United States on December 13, 2018

Verified Purchase

No problems, good experience.

One person found this helpful

Helpful

Pachi

must read

Reviewed in the United States on February 5, 2010

Verified Purchase

I recommend this book as must read in todays internet programming world.
I am not a internet programmer, but still this book covers lot of topics how my stand alone application
can be vulnerable if the system is hooked to net.

Must read for all programmrs in todays world.

Helpful

beattempo

Great read for programmers

Reviewed in the United States on September 13, 2017

Verified Purchase

Great book for the money.

Reviewed in the United States on September 15, 2011

Verified Purchase

Great book! I am very pleased with this purchase. A lot of valuable information. It helps me on my job.

Helpful

Amazon Customer

Excellent reading for any programmer

Reviewed in the United States on August 15, 2003

This is an excellent book for any beginner to intermediate programmer who would like to know the hooks and corners of securing the code.
The book starts rather philosophically and for any one who read Steve Maguire's book this might seem like a bit boring. But the real meat wont come until the part 2 where the author takes straight dive into the coding with lots of examples. Some of the web related examples deserve double clapping just for the effort the examples are bringing out the case of bad-news. This got to open up any programmer's eye and any managers mouth (in shock! that is).
The author takes us mostly into the world of Windows and C/C++ and some what into .NET and managed code behavior and security lapses one can get easily into.
While I enjoyed this book thoroughly, I just could not give it 5 stars because of its bia towards Windows and .NET framework. This can be accompanied with Steve Maguire's excellent book on Writing Solid "C" Code.
For an expert this book only offers few bits of additional information. This might be the case as the author tried to address many facets of programming and didn't concentrate on one subject alone. Ideally this book can be made into a separate series of books each concentrating on a single topic of interest.

15 people found this helpful

Helpful

Louis Lu

Five Stars

Reviewed in the United States on September 27, 2014

Verified Purchase

very good for 2nd hand book!!!
same as I expected

Helpful

Top reviews from other countries

Client d'Amazon

Very good quality

Reviewed in France on December 4, 2015

Verified Purchase

Nothing to complain about the quality and aspect of the book. Will probably buy again from this vendor. Two thumbs up!

Jennifers Daddy

Mandatory

Reviewed in the United Kingdom on February 28, 2007

Verified Purchase

If you are a developer then this book is mandatory.

You do not realise the threats (from the desktop, the web, Intranet) until you read this book. Attacks come from everywhere.

Reading this together with "Code Complete 2" (Steve McConnell) will surely make you a better developer and your software safer, faster and more secure.

Imagine the consequences of a simple SQL injection attack or a cross site script attack on your customers. Your reputation, your job and your company are at risk. Its as simple as that. Getting a few copies of this for yourself and your colleagues makes sense.

2 people found this helpful

Cryptoman

Now mandatory reading for my team

Reviewed in the United Kingdom on March 23, 2012

Verified Purchase

I bought myself a copy of this some years ago. I was sufficiently impressed that I then bought additional copies and presented them to each of my team members. It is not sufficient material on its own - it is particularly light on .Net issues, but it is a very good primer on a wide range of topics.

Bandidoz

Dated but still very relevant

Reviewed in the United Kingdom on September 1, 2017

Verified Purchase

This is an excellent book which gives you very specific information on common security weaknesses to be aware of, common coding failures that can be exploited by malformed data along with useful philosophies on testing at the boundaries between trusted and untrusted environments. Most of the content is as applicable today as it was in the early noughties.

The authors are very highly experienced however they are also a bit smug which does grate from time to time.

2 people found this helpful

Luke B.

Must read for EVERY programmer (not just Microsoft Employees!)

Reviewed in Canada on March 16, 2016

Verified Purchase

Having a book endorsed by Microsoft's Co-Founder, Bill Gates, seems like a great idea! On the front, he is quoted as saying that it's a mandatory read for every MS employee.

This version is from when Windows Server 2003 was still nick-named Windows Server .Net, so that should tell you the age; however, the information is very accurate, and insightful in how to write secure programs even in this day and age. I don't write in C or C++ as much as I'd like to learn it, so some examples went over my head when they got to the code. The information they provide helps a lot to understand *why* the programmers are choosing their insecure or secure methods, and helps to convey the message that security starts as you start planning the project, **before you write any actual code**. I recommend every programmer who wants to write for other people read this book!

See more reviews

Shipping & Fee Details

Image Unavailable

Follow the authors