Software Security: Building Security In

Új könyv olvasásába kezdtem. Gary McGraw: Software Security-Building Security In. Pár téma amivel a könyv foglalkozik: risk management frameworks and processes, code review using static analysis tools, architectural risk analysis, penetration testing, security testing, abuse case development. Érdekes témák, már mindjárt a könyv elején sok érdekes dolgot találtam....szóval csak tudom ajánlani! Pár idézet a könyv előszavából:

"When it comes to software security, the devil is in the details. This book tackles the details." --Bruce Schneier, CTO and founder, Counterpane, and author of Beyond Fear and Secrets and Lies

"McGraw's book shows you how to make the 'culture of security' part of your development lifecycle." --Howard A. Schmidt, Former White House Cyber Security Advisor

"McGraw is leading the charge in software security. His advice is as straightforward as it is actionable. If your business relies on software (and whose doesn't), buy this book and post it up on the lunchroom wall." --Avi Rubin, Director of the NSF ACCURATE Center; Professor, Johns Hopkins University; and coauthor of Firewalls and Internet Security