Software that is developed from the beginning with security in mind will resist, tolerate, and recover from attacks more effectively than would otherwise be possible. While there may be no silver bullet for security, there are practices that project managers will find beneficial. With this management guide, you can select from a number of sound practices likely to increase the security and dependability of your software, both during its development and subsequently in its operation.
Software Security Engineering draws extensively on the systematic approach developed for the Build Security In (BSI) Web site. Sponsored by the Department of Homeland Security Software Assurance Program, the BSI site offers a host of tools, guidelines, rules, principles, and other resources to help project managers address security issues in every phase of the software development life cycle (SDLC). The book’s expert authors, themselves frequent contributors to the BSI site, represent two well-known resources in the security world: the CERT Program at the Software Engineering Institute (SEI) and Cigital, Inc., a consulting firm specializing in software security.
This book will help you understand why
Software security is about more than just eliminating vulnerabilities and conducting penetration tests
Network security mechanisms and IT infrastructure security services do not sufficiently protect application software from security risks
Software security initiatives should follow a risk-management approach to identify priorities and to define what is “good enough”–understanding that software security risks will change throughout the SDLC
Project managers and software engineers need to learn to think like an attacker in order to address the range of functions that software should not do, and how software can better resist, tolerate, and recover when under attack
Download:
http://depositfiles.com/files/5281475
Fast Software Encryption: 16th International Workshop, FSE 2009
Securing HP NonStop Servers in an Open Systems World: TCP/IP, OSS and SQL
Optical Burst Switched Networks
Honeypots: Tracking Hackers by Lance Spitzner
Security in an IPv6 Environment
Ben Jackson, Champ Clark - Asterisk Hacking
Hardware-based Computer Security Techniques to Defeat Hackers
Hacking Firefox - More Than 150 Hacks Mods and Customizations
1000 Hacker Tutorials 2008
The Best Damn Cybercrime and Forensics Book Period
Practical Hacking Techniques and Counter(4171)
Learning by Doing: CCNA Lab Manual Versi(3696)
Gray Hat Hacking, 2nd Edition(3546)
CEH: Official Certified Ethical Hacker R(1961)
Google Apps Hacks(1812)
OReilly Cisco IOS Cookbook 2nd Edition D(1782)
Mastering Network Security(1721)
Google Hacks 3rd Edition(1705)
AudioWhiz CCNA 3.0 Exam 640-801 Bundle(1549)
Hack Proof Your Wireless Network(1413)
The Best Damn Cybercrime and Forensics B(1388)
Encyclopedia of Cryptography and Securit(1279)
Stealing the Network: How to Own a Conti(1228)
Intrusion Detection: Network Security Be(1224)
Securing HP NonStop Servers in an Open S(07-03)
Optical Burst Switched Networks(05-12)
Honeypots: Tracking Hackers by Lance Spi(05-12)
Security in an IPv6 Environment(03-28)
Ben Jackson, Champ Clark - Asterisk Hack(03-26)
Hardware-based Computer Security Techniq(01-15)
Hacking Firefox - More Than 150 Hacks Mo(12-12)
1000 Hacker Tutorials 2008(12-12)
The Best Damn Cybercrime and Forensics B(11-21)
Linux Firewalls mit iptables & Co.(11-20)
Big Book of Apple Hacks: Tips & Tools fo(11-17)
Google Hacks 3rd Edition(11-03)
Take Control of Your AirPort Network(09-29)
Maximum Linux Security (2nd Edition)(09-29)
