ISBN.nu logo
isbn.nu
search for books and compare prices
Search >
cover image
Secure Coding: Principles and Practices
Click any price to visit the store and find more details or purchase the item. Pricing is shown for items sent to or within the United States via the least expensive method. Results are sorted by price, and shipping costs are not included. Permanent link: http://isbn.nu/9780596002428.
Price
Store
Arrives
Preparing
Shipping
AbeBooks.com*
6–16 days
1–2 days
5–14 days
Alibris*
6–17 days
2–3 days
4–14 days
Amazon.com (Marketplace)
5–16 days
1–2 days
4–14 days
Half.com*
3–11 days
1–2 days
2–9 days
ValoreBooks*
5–17 days
1–3 days
4–14 days
Textbooks.com
2–3 days
1–2 days
1 day
Powell's Books*
5–12 days
1–3 days
4–9 days
Amazon.ca (Marketplace)
1–2 weeks
1–2 days
1 week
Amazon.co.uk (Marketplace)
1–2 weeks
1–2 days
1 week
Amazon.es (Marketplace)
1–2 weeks
1–2 days
1–2 weeks
Amazon.es
1–2 weeks
1–2 days
1–2 weeks

Notes on prices

*
The price is the lowest for any condition, which may be new or used; other conditions may also be available.
Includes prices for new and used copies from resellers listed at Amazon (for that country).
§
Rental copies must be returned at the end of the designated period, and may involve a deposit.
Click to show details on same page as prices
Publisher Oreilly & Associates Inc
Publication date July 1, 2003
Binding Paperback
Book category Adult Non-Fiction
ISBN-13 9780596002428
ISBN-10 0596002424
Dimensions 0.50 by 6 by 8.75 in.
Weight 0.65 lbs.
Availability§ Out of Print
Original list price $29.95
§
As reported by publisher
Amazon.com description: Product Description:

Practically every day, we read about a new type of attack on computer systems and networks. Viruses, worms, denials of service, and password sniffers are attacking all types of systems -- from banks to major e-commerce sites to seemingly impregnable government and military computers --at an alarming rate.Despite their myriad manifestations and different targets, nearly all attacks have one fundamental cause: the code used to run far too many systems today is not secure. Flaws in its design, implementation, testing, and operations allow attackers all-too-easy access.Secure Coding, by Mark G. Graff and Ken vanWyk, looks at the problem of bad code in a new way. Packed with advice based on the authors' decades of experience in the computer security field, this concise and highly readable book explains why so much code today is filled with vulnerabilities, and tells readers what they must do to avoid writing code that can be exploited by attackers. Writing secure code isn't easy, and there are no quick fixes to bad code. To build code that repels attack, readers need to be vigilant through each stage of the entire code lifecycle:

  • Architecture: during this stage, applying security principles such as "least privilege" will help limit even the impact of successful attempts to subvert software.
  • Design: during this stage, designers must determine how programs will behave when confronted with fatally flawed input data. The book also offers advice about performing security retrofitting when you don't have the source code -- ways of protecting software from being exploited even if bugs can't be fixed.
  • Implementation: during this stage, programmers must sanitize all program input (the character streams representing a programs' entire interface with its environment -- not just the command lines and environment variables that are the focus of most securityanalysis).
  • Testing: during this stage, programs must be checked using both static code checkers and runtime testing methods -- for example, the fault injection systems now available to check for the presence of such flaws as buffer overflow.
  • Operations: during this stage, patch updates must be installed in a timely fashion. In early 2003, sites that had diligently applied Microsoft SQL Server updates were spared the impact of the Slammer worm that did serious damage to thousands of systems.
Beyond the technical, Secure Coding sheds new light on the economic, psychological, and sheer practical reasons why security vulnerabilities are so ubiquitous today. It presents a new way of thinking about these vulnerabilities and ways that developers can compensate for the factors that have produced such unsecured software in the past. It issues a challenge to all those concerned about computer security to finally make a commitment to building code the right way.


Recency: These prices were retrieved a few seconds ago. The price comparison took about 5 seconds.

Shipping costs: The shipping cost shown by default, if you choose to display it, is the cheapest available for your destination.

Sales tax inclusion: If you set up an account with isbn.nu, live in the United States, and specify your state, you can choose to show shipping fees in price results. In this case, we include the sales tax whenever we can determine that such tax is charged by a store for delivery to your state.

Orders shipped across national borders or for countries other than the U.S.: Neither the sales price nor the shipping includes VAT, GST, customs, or other applicable taxes. Please consult the store to determine exact fees.

No warranties are made express or implied about the accuracy, timeliness, merit, or value of the information provided. Information subject to change without notice. isbn.nu is not a bookseller, just an information source.

Is information about the book missing or in error? Want to know more about where our bibliographic and pricing details come from? Report corrections and find out about isbn.nu's information sources here.