Testing Code Security (repost)
Maura A. van der Linden, "Testing Code Security"
Publisher: Auerbach Publications; 1 edition | 2007-06-07 | 292 Pages | ISBN: 0849392519 | PDF | 2 MB
Publisher: Auerbach Publications; 1 edition | 2007-06-07 | 292 Pages | ISBN: 0849392519 | PDF | 2 MB
The huge proliferation of security vulnerability exploits, worms, and viruses place an incredible drain on both cost and confidence for manufacturers and consumers. The release of trustworthy code requires a specific set of skills and techniques, but this information is often dispersed and decentralized, encrypted in its own jargon and terminology, and can take a colossal amount of time and data mining to find.
Written in simple, common terms, Testing Code Security is a consolidated resource designed to teach beginning and intermediate testers the software security concepts needed to conduct relevant and effective tests. Answering the questions pertinent to all testing procedures, the book considers the differences in process between security testing and functional testing, the creation of a security test plan, the benefits and pitfalls of threat-modeling, and the identification of root vulnerability problems and how to test for them.