Price: [price_with_discount]
(as of [price_update_date] – Details)
[ad_1]
Learn application security from the very start, with this comprehensive and approachable guide!
Alice and Bob Learn Application Security is an accessible and thorough resource for anyone seeking to incorporate, from the beginning of the System Development Life Cycle, best security practices in software development. This book covers all the basic subjects such as threat modeling and security testing, but also dives deep into more complex and advanced topics for securing modern software systems and architectures. Throughout, the book offers analogies, stories of the characters Alice and Bob, real-life examples, technical explanations and diagrams to ensure maximum clarity of the many abstract and complicated subjects.
Topics include:
Secure requirements, design, coding, and deploymentSecurity Testing (all forms)Common PitfallsApplication Security ProgramsSecuring Modern ApplicationsSoftware Developer Security Hygiene
Alice and Bob Learn Application Security is perfect for aspiring application security engineers and practicing software developers, as well as software project managers, penetration testers, and chief information security officers who seek to build or improve their application security programs.
Alice and Bob Learn Application Security illustrates all the included concepts with easy-to-understand examples and concrete practical applications, furthering the reader’s ability to grasp and retain the foundational and advanced topics contained within.
From the Publisher
Publisher : Wiley
Publication date : 23 Oct. 2020
Edition : 1st
Language : English
Print length : 288 pages
ISBN-10 : 1119687357
ISBN-13 : 978-1119687351
Item weight : 1.05 kg
Dimensions : 18.54 x 2.29 x 23.11 cm
Best Sellers Rank: 208,341 in Books (See Top 100 in Books) 690 in Web Administration 1,928 in Computer Science (Books)
Customer reviews: 4.7 4.7 out of 5 stars 217 ratings var dpAcrHasRegisteredArcLinkClickAction; P.when(‘A’, ‘ready’).execute(function(A) { if (dpAcrHasRegisteredArcLinkClickAction !== true) { dpAcrHasRegisteredArcLinkClickAction = true; A.declarative( ‘acrLink-click-metrics’, ‘click’, { “allowLinkDefault”: true }, function (event) { if (window.ue) { ue.count(“acrLinkClickCount”, (ue.count(“acrLinkClickCount”) || 0) + 1); } } ); } }); P.when(‘A’, ‘cf’).execute(function(A) { A.declarative(‘acrStarsLink-click-metrics’, ‘click’, { “allowLinkDefault” : true }, function(event){ if(window.ue) { ue.count(“acrStarsLinkWithPopoverClickCount”, (ue.count(“acrStarsLinkWithPopoverClickCount”) || 0) + 1); } }); });
[ad_2]
8 reviews for Alice and Bob Learn Application Security
Add a review
Great book
Great book
Practical Application Security that works
While you can learn application security from frameworks and standards, there is no better lesson than from the trenches and from experience. Tanya builds the book from basic core concepts, to specific techniques and into organizational patterns.This is a sure evergreen for all application security practitioners
Great book and highly recommended
This book is one of thr best application security books. It’s very simple to follow but offers a lot of good information without stuffing words. This book is not for Hacking but it’s for securing your application.
I run a DevSecOps Book Club and this was the first book we chose to collectively read together. Tanya (the author), was incredibly gracious and even offered to join us live for one of our book club meetings — sharing some of her personal industry experiences, answering questions, and generally being an advocate for security education.The book is well-written, to the point, and walks developers through the entire thought process behind building secure software, both culturally and technically.If you’re looking for a book that is easy to read and will give you a good mix of practical security information (such as what HTTP security headers you should be using in your web applications) to principles and best practices (such as understanding the C-I-A model and threat modeling), you won’t go wrong with this book.I highly recommend it to anyone new to the world of application security. It’s an accessible and fun introduction to the space — you’ll learn a lot! =)
O que me chamou atenção nesse livro foi o fato de seguir uma linha de pensamento que permite quem está sem conhecimento algum em segurança de aplicações a conhecer todas as fases necessárias (S-SDLC) para criar uma aplicação com segurança, sendo esse, o trabalho principal de um AppSec auxiliando nestas diversas fases, promovendo o shift left nas mesmas. O livro também aborda conteúdos mais estratégicos, como iniciar um programa de maturidade de desenvolvimento seguro de software, seja com o OWASP SAMM, BSIMM ou alguma metodologia própria, por exemplo. Aborda também algumas considerações interessantes referentes a Microsserviços, Serverless e etc.
Die wichtigsten Aspekte moderner, sicherheitsorientierter Softwareentwicklung werden sehr strukturiert behandelt. Auch die neuesten Sicherheitskonzepte aus dem agilen Umfeld und der cloudbezogenen Anwendungsentwicklung werden besprochen. Übungen zu den einzelnen Kapiteln und die dazugehörigen Antworten runden das gelungene Buch ab.
For everyone wants deepen application security skills
Je m’attendais à un bon livre sur l’AppSec et ce n’est pas le cas.La forme et le fond ne sont pas là.Sur la forme: il manque un file conducteur à l’intérieur des chapitres, les informations données sont très décousues.Sur le fond: les chapitres “requirements” et design ne sont pas au rendez-vous. Ils sont à au moins 70% hors sujet. Le lecteur attend du conceptuel.J’ai appris quelques petites choses mais rien sur l’AppSec directement.