Humburger Icon
Logo1
Login & Sign up
Bookswagon-24x7 online bookstore
AddBanner
Home icon Home
Account Icon Account
Wishlist Icon Wishlist
Cart Icon Cart
Bookswagon icon Categories
Home > Computer & Internet > Business applications > Enterprise software > Sap (systems, applications & products in databases) > Secure Programming with Static Analysis
22%
Secure Programming with Static Analysis

Secure Programming with Static Analysis

          
5
4
3
2
1
Write Reviews

Out of Stock


Premium quality
Premium quality
Bookswagon upholds the quality by delivering untarnished books. Quality, services and satisfaction are everything for us!
Easy Return
Easy return
Not satisfied with this product! Keep it in original condition and packaging to avail easy return policy.
Certified product
Certified product
First impression is the last impression! Address the book’s certification page, ISBN, publisher’s name, copyright page and print quality.
Secure Checkout
Secure checkout
Security at its finest! Login, browse, purchase and pay, every step is safe and secured.
Money back guarantee
Money-back guarantee:
It’s all about customers! For any kind of bad experience with the product, get your actual amount back after returning the product.
On time delivery
On-time delivery
At your doorstep on time! Get this book delivered without any delay.
Notify me when this book is in stock
Add to Wishlist
About the Book

The First Expert Guide to Static Analysis for Software Security!

 

Creating secure code requires more than just good intentions. Programmers need to know that their code will be safe in an almost infinite number of scenarios and configurations. Static source code analysis gives users the ability to review their work with a fine-toothed comb and uncover the kinds of errors that lead directly to security vulnerabilities. Now, there’s a complete guide to static analysis: how it works, how to integrate it into the software development processes, and how to make the most of it during security code review. Static analysis experts Brian Chess and Jacob West look at the most common types of security defects that occur today. They illustrate main points using Java and C code examples taken from real-world security incidents, showing how coding errors are exploited, how they could have been prevented, and how static analysis can rapidly uncover similar mistakes. This book is for everyone concerned with building more secure software: developers, security engineers, analysts, and testers.

 

Coverage includes:

 

  Why conventional bug-catching often misses security problems

  How static analysis can help programmers get security right

  The critical attributes and algorithms that make or break a static analysis tool

  36 techniques for making static analysis more effective on your code

  More than 70 types of serious security vulnerabilities, with specific solutions

  Example vulnerabilities from Firefox, OpenSSH, MySpace, eTrade, Apache httpd, and many more

  Techniques for handling untrusted input

  Eliminating buffer overflows: tactical and strategic approaches

  Avoiding errors specific to Web applications, Web services, and Ajax

  Security-aware logging, debugging, and error/exception handling

  Creating, maintaining, and sharing secrets and confidential information

  Detailed tutorials that walk you through the static analysis process

 

“We designed Java so that it could be analyzed statically. This book shows you how to apply advanced static analysis techniques to create more secure, more reliable software.”

Bill Joy, Co-founder of Sun Microsystems, co-inventor of the Java programming language

 

“'Secure Programming with Static Analysis' is a great primer on static analysis for security-minded developers and security practitioners. Well-written, easy to read, tells you what you need to know.”

David Wagner, Associate Professor, University of California Berkeley

 

“Software developers are the first and best line of defense for the security of their code. This book gives them the security development knowledge and the tools they need in order to eliminate vulnerabilities before they move into the final products that can be exploited.”

Howard A. Schmidt, Former White House Cyber Security Advisor

 

BRIAN CHESS is Founder and Chief Scientist of Fortify Software, where his research focuses on practical methods for creating secure systems. He holds a Ph.D. in Computer Engineering from University of California Santa Cruz, where he studied the application of static analysis to finding security-related code defects.

 

JACOB WEST manages Fortify Software’s Security Research Group, which is responsible for building security knowledge into Fortify’s products. He brings expertise in numerous programming languages, frameworks, and styles together with deep knowledge about how real-world systems fail.

 

CD contains a working demonstration version of Fortify Software’s Source Code Analysis (SCA) product; extensive Java and C code samples; and the tutorial chapters from the book in PDF format.

 

 

Part I: Software Security and Static Analysis        1

1          The Software Security Problem          3

2          Introduction to Static Analysis 21

3          Static Analysis as Part of the Code Review Process    47

4          Static Analysis Internals          71

Part II: Pervasive Problems            115

5          Handling Input 117

6          Buffer Overflow           175

7          Bride of Buffer Overflow         235

8          Errors and Exceptions  265

Part III: Features and Flavors         295

9          Web Applications        297

10         XML and Web Services           349

11         Privacy and Secrets     379

12         Privileged Programs    421

Part IV: Static Analysis in Practice  457

13         Source Code Analysis Exercises for Java        459

14         Source Code Analysis Exercises for C 503

Epilogue          541

References      545

Index   559

 

 

Best Sellers

See All
20%
Karma: A Yogi's Guide to Crafting Your Destiny NEW YORK TIMES, USA TODAY, and PUBLISHERS WEEKLY BESTSELLER , must-read book on spirituality and self-improvement by Sadhguru
Quick View

Karma: A Yogi's Guide to Crafting Your Destiny NEW YORK TIMES, USA TODAY, and PUBLISHERS WEEKLY BESTSELLER , must-read book on spirituality and self-improvement by Sadhguru Sadhguru

4.6 (13)

₹239 ₹299

27%
Doglapan
Quick View

Doglapan Ashneer Grover

4.4 (10)

₹364 ₹499

31%
Atomic Habits
Quick View

Atomic Habits James Clear

4.7 (7)

₹551 ₹799

40%
General Knowledge for All - 2021
Quick View

General Knowledge for All - 2021 RPH Editorial Board

No Review Yet

₹18 ₹30

38%
It Ends with Us
Quick View

It Ends with Us Colleen Hoover

4.3 (16)

₹309 ₹499

24%
The Psychology of Money
Quick View

The Psychology of Money Morgan Housel

4.5 (8)

₹303 ₹399

30%
My First Library: Boxset of 10 Board Books for Kids
Quick View

My First Library: Boxset of 10 Board Books for Kids Wonder House Books Editorial

4.1 (8)

₹524 ₹749

28%
Ikigai
Quick View

Ikigai Francesc Miralles

4 (6)

₹396 ₹550

30%
Bhagavad Gita: Yatharoop
Quick View

Bhagavad Gita: Yatharoop A.C. Bhaktivedanta Swami Prabhupada

4.3 (9)

₹455 ₹650

25%
The Power of Your Subconscious Mind
Quick View

The Power of Your Subconscious Mind Joseph Murphy

4 (10)

₹1,390 ₹1,853

39%
How to Read a Book
Quick View

How to Read a Book Mortimer J. Adler

4.3 (8)

₹365 ₹599

Educart English Paper 1 (Language) + English Paper 2 (Literature) ICSE Semester 1 Class 10 Sample Papers MCQ Book For 2021 (Study With Sudhir)
Quick View

Educart English Paper 1 (Language) + English Paper 2 (Literature) ICSE Semester 1 Class 10 Sample Papers MCQ Book For 2021 (Study With Sudhir) Educart|T S Sudhir

3.5 (8)

₹258

30%
World’s Greatest Books For Personal Growth & Wealth (Set of 4 Books) : Perfect Motivational Gift Set
Quick View

World’s Greatest Books For Personal Growth & Wealth (Set of 4 Books) : Perfect Motivational Gift Set Dale Carnegie, Napoleon Hill, Dr. Joseph Murphy & George S. Clason

4.5 (19)

₹489 ₹699

Product Details
  • ISBN-13: 9780321424778
  • Publisher: Pearson Education (US)
  • Binding: PAPERBACK
  • Edition: 1 PAP/CDR
  • Language: English
  • Returnable: N
  • Spine Width: 34 mm
  • Width: 179 mm
  • ISBN-10: 0321424778
  • Publisher Date: 01 Jul 2007
  • Depth: 32
  • Height: 232 mm
  • No of Pages: 587
  • Series Title: English
  • Weight: 885 gr

Similar Products

Add Photo
Add Photo

Customer Reviews

REVIEWS           
Click Here To Be The First to Review this Product
Secure Programming with Static Analysis
Pearson Education (US) -
Secure Programming with Static Analysis
Writing guidlines
We want to publish your review, so please:
  • keep your review on the product. Review's that defame author's character will be rejected.
  • Keep your review focused on the product.
  • Avoid writing about customer service. contact us instead if you have issue requiring immediate attention.
  • Refrain from mentioning competitors or the specific price you paid for the product.
  • Do not include any personally identifiable information, such as full names.

Secure Programming with Static Analysis

Required fields are marked with *

Review Title*
Review
    Add Photo Add up to 6 photos
    Would you recommend this product to a friend?
    Tag this Book
    Read more
    Does your review contain spoilers?
    What type of reader best describes you?
    I agree to the terms & conditions
    You may receive emails regarding this submission. Any emails will include the ability to opt-out of future communications.

    CUSTOMER RATINGS AND REVIEWS AND QUESTIONS AND ANSWERS TERMS OF USE

    These Terms of Use govern your conduct associated with the Customer Ratings and Reviews and/or Questions and Answers service offered by Bookswagon (the "CRR Service").


    By submitting any content to Bookswagon, you guarantee that:
    • You are the sole author and owner of the intellectual property rights in the content;
    • All "moral rights" that you may have in such content have been voluntarily waived by you;
    • All content that you post is accurate;
    • You are at least 13 years old;
    • Use of the content you supply does not violate these Terms of Use and will not cause injury to any person or entity.
    You further agree that you may not submit any content:
    • That is known by you to be false, inaccurate or misleading;
    • That infringes any third party's copyright, patent, trademark, trade secret or other proprietary rights or rights of publicity or privacy;
    • That violates any law, statute, ordinance or regulation (including, but not limited to, those governing, consumer protection, unfair competition, anti-discrimination or false advertising);
    • That is, or may reasonably be considered to be, defamatory, libelous, hateful, racially or religiously biased or offensive, unlawfully threatening or unlawfully harassing to any individual, partnership or corporation;
    • For which you were compensated or granted any consideration by any unapproved third party;
    • That includes any information that references other websites, addresses, email addresses, contact information or phone numbers;
    • That contains any computer viruses, worms or other potentially damaging computer programs or files.
    You agree to indemnify and hold Bookswagon (and its officers, directors, agents, subsidiaries, joint ventures, employees and third-party service providers, including but not limited to Bazaarvoice, Inc.), harmless from all claims, demands, and damages (actual and consequential) of every kind and nature, known and unknown including reasonable attorneys' fees, arising out of a breach of your representations and warranties set forth above, or your violation of any law or the rights of a third party.


    For any content that you submit, you grant Bookswagon a perpetual, irrevocable, royalty-free, transferable right and license to use, copy, modify, delete in its entirety, adapt, publish, translate, create derivative works from and/or sell, transfer, and/or distribute such content and/or incorporate such content into any form, medium or technology throughout the world without compensation to you. Additionally,  Bookswagon may transfer or share any personal information that you submit with its third-party service providers, including but not limited to Bazaarvoice, Inc. in accordance with  Privacy Policy


    All content that you submit may be used at Bookswagon's sole discretion. Bookswagon reserves the right to change, condense, withhold publication, remove or delete any content on Bookswagon's website that Bookswagon deems, in its sole discretion, to violate the content guidelines or any other provision of these Terms of Use.  Bookswagon does not guarantee that you will have any recourse through Bookswagon to edit or delete any content you have submitted. Ratings and written comments are generally posted within two to four business days. However, Bookswagon reserves the right to remove or to refuse to post any submission to the extent authorized by law. You acknowledge that you, not Bookswagon, are responsible for the contents of your submission. None of the content that you submit shall be subject to any obligation of confidence on the part of Bookswagon, its agents, subsidiaries, affiliates, partners or third party service providers (including but not limited to Bazaarvoice, Inc.)and their respective directors, officers and employees.

    Accept

    New Arrivals

    See All
    31%
    House of Flame and Shadow
    Quick View

    House of Flame and Shadow Sarah J. Maas

    No Review Yet

    ₹620 ₹899

    27%
    Crime, Grime and Gumption
    Quick View

    Crime, Grime and Gumption OP Singh

    No Review Yet

    ₹364 ₹499

    31%
    The Hidden Hindu Book 2 द हिडन हिंदू-2 - अक्षत गुप्ता (Hindi Version of Hidden Hindu 2)
    Quick View

    The Hidden Hindu Book 2 द हिडन हिंदू-2 - अक्षत गुप्ता (Hindi Version of Hidden Hindu 2) Akshat Gupta

    4.9 (8)

    ₹207 ₹300

    20%
    Getting Dressed and Parking Cars
    Quick View

    Getting Dressed and Parking Cars Kejriwal, Alok

    5 (8)

    ₹239 ₹299

    27%
    Finding the Oasis
    Quick View

    Finding the Oasis Sandeep Mall

    4.5 (8)

    ₹237 ₹325

    20%
    All He Left Me Was a Recipe
    Quick View

    All He Left Me Was a Recipe Shenaz Treasury

    4.8 (8)

    ₹239 ₹299

    24%
    Common Yet Uncommon
    Quick View

    Common Yet Uncommon Sudha Murty

    5 (8)

    ₹303 ₹399

    18%
    Art of Habits
    Quick View

    Art of Habits Gauranga Das

    4.8 (9)

    ₹205 ₹250

    30%
    The Golden Touch
    Quick View

    The Golden Touch T.S. Kalyanaraman

    4.9 (10)

    ₹489 ₹699

    24%
    Curse of the Pir
    Quick View

    Curse of the Pir Anupama Pandey

    4.8 (10)

    ₹303 ₹399

    35%
    The Scrapper's Way
    Quick View

    The Scrapper's Way Damodar Padhi

    5 (8)

    ₹324 ₹499

    Inspired by your browsing history


    Your review has been submitted!

    You've already reviewed this product!