Secure Programming with Static Analysis

Secure Programming with Static Analysis

The First Expert Guide to Static Analysis for Software Security! Creating secure code requires more than just good intentions. Programmers need to know that their code will be safe in an almost infinite number of scenarios and configurations. Static source code analysis gives users the ability to review their work with a fine-toothed comb and uncover the kinds of errors that lead directly to security vulnerabilities. Now, there’s a complete guide to static analysis: how it works, how to integrate it into the software development processes, and how to make the most of it during security code review. Static analysis experts Brian Chess and Jacob West look at the most common types of security defects that occur today. They illustrate main points using Java and C code examples taken from real-world security incidents, showing how coding errors are exploited, how they could have been prevented, and how static analysis can rapidly uncover similar mistakes. This book is for everyone concerned with building more secure software: developers, security engineers, analysts, and testers.


Author
Publisher Pearson Education
Release Date
ISBN 0132702029
Pages 1168 pages
Rating 4/5 (27 users)

More Books:

Secure Programming with Static Analysis
Language: en
Pages: 1168
Authors: Brian Chess
Categories: Computers
Type: BOOK - Published: 2007-06-29 - Publisher: Pearson Education

The First Expert Guide to Static Analysis for Software Security! Creating secure code requires more than just good intentions. Programmers need to know that the
Secure Coding in C and C++
Language: en
Pages: 600
Authors: Robert C. Seacord
Categories: Computers
Type: BOOK - Published: 2013-03-23 - Publisher: Addison-Wesley

Learn the Root Causes of Software Vulnerabilities and How to Avoid Them Commonly exploited software vulnerabilities are usually caused by avoidable software def
Building in Security at Agile Speed
Language: en
Pages: 373
Authors: James Ransome
Categories: Computers
Type: BOOK - Published: 2021-04-21 - Publisher: CRC Press

Today's high-speed and rapidly changing development environments demand equally high-speed security practices. Still, achieving security remains a human endeavo
Software Security Engineering
Language: en
Pages: 368
Authors: Nancy R. Mead
Categories: Computers
Type: BOOK - Published: 2004-04-21 - Publisher: Addison-Wesley Professional

Software Security Engineering draws extensively on the systematic approach developed for the Build Security In (BSI) Web site. Sponsored by the Department of Ho
Software Engineering and Formal Methods
Language: en
Pages: 325
Authors: Domenico Bianculli
Categories: Computers
Type: BOOK - Published: 2016-01-11 - Publisher: Springer

This book constitutes revised selected papers from the workshopscollocated with the SEFM 2015 conference on Software Engineering andFormal Methods, held in York
Programming Languages and Systems
Language: en
Pages: 555
Authors: Bor-Yuh Evan Chang
Categories: Computers
Type: BOOK - Published: 2017-11-17 - Publisher: Springer

This book constitutes the proceedings of the 15th Asian Symposium on Programming Languages and Systems, APLAS 2017, held in Suzhou, China, in November 2017. The
Engineering Secure Software and Systems
Language: en
Pages: 201
Authors: Fabio MASSACCI
Categories: Computers
Type: BOOK - Published: 2009-03-27 - Publisher: Springer

This book constitutes the refereed proceedings of the First International Symposium on Engineering Secure Software and Systems, ESSoS 2009, held in Leuven, Belg
Computer Networks & Communications (NetCom)
Language: en
Pages: 865
Authors: Nabendu Chaki
Categories: Technology & Engineering
Type: BOOK - Published: 2013-02-26 - Publisher: Springer Science & Business Media

Computer Networks & Communications (NetCom) is the proceedings from the Fourth International Conference on Networks & Communications. This book covers theory, m
Software Analysis, Testing, and Evolution
Language: en
Pages: 219
Authors: Lei Bu
Categories: Computers
Type: BOOK - Published: 2018-11-19 - Publisher: Springer

This book constitutes the refereed proceedings of the 8th International Conference on Software Analysis, Testing, and Evolution, SATE 2018. The conference was c
Transactions on Computational Collective Intelligence XIX
Language: en
Pages: 187
Authors: Ngoc Thanh Nguyen
Categories: Computers
Type: BOOK - Published: 2015-12-11 - Publisher: Springer

These transactions publish research in computer-based methods of computational collective intelligence (CCI) and their applications in a wide range of fields su