View Source: SecureCodingReview - Waikato Linux Users Group

Edit PageHistory Diff Info LikePages

Secure Coding: Designing and Implementing Secure Applications -- an [O'Reilly] book by Mark G. Graff and Kenneth R. van Wyk.

A great book on the philosophy and theory behind secure design and implementation of applications and systems. Includes a great deal of insight and any number of things to ponder, but no code to steal or hard-coded list of absolute priorities. So while it won't help if you're shipping an program at the end of the week and it __has__ to be secure, it will help you understand the security trade-offs in your next system and point you towards where you might start improving things.

Due to it's abstract nature, it isn't tied to one programming language or platform and shouldn't date too quickly.

I (StuartYeates) read it cover-to-cover on a plane trip after I got it at [OpenSourceConvention].

The [O'Rielly page|http://www.oreilly.com/catalog/securecdng/] and the [authors page| http://www.securecoding.org/] for the book.

----
CategoryBookReview

No page links to SecureCodingReview.

Last edited on Thursday, September 23, 2004 5:06:06 pm by AristotlePagaltzis

Edit PageHistory Diff Info LikePages