Architecting Secure Software Systems

Asoke K. Talukder, Manish Chaitanya

Hardback
$60.76

eBook
from $34.00

December 17, 2008 by Auerbach Publications
Professional - 446 Pages - 99 B/W Illustrations
ISBN 9781420087840 - CAT# AU7843

FREE Standard Shipping!

was $75.95

$60.76

SAVE $15.19

Add to Cart
Add to Wish List

Features

  • Explores all aspects of building a secured and safe system from the ground up and covers the whole security lifecycle
  • Shows developers how to rethink programming so they embed security and safety features as they write programs
  • Features security protocols for UNIX, .NET, Java, mobile, and Web environments
  • Allows users to experiment with real-world code snippets
  • Employs numerous diagrams and flowcharts to clarify material

Summary

Traditionally, software engineers have defined security as a non-functional requirement. As such, all too often it is only considered as an afterthought, making software applications and services vulnerable to attacks. With the phenomenal growth in cybercrime, it has become imperative that security be an integral part of software engineering so that all software assets are protected and safe. Architecting Secure Software Systems defines how security should be incorporated into basic software engineering at the requirement analysis phase, continuing this sharp focus into security design, secured programming, security testing, and secured deployment.

Outlines Protection Protocols for Numerous Applications

Through the use of examples, this volume defines a myriad of security vulnerabilities and their resultant threats. It details how to do a security requirement analysis and outlines the security development lifecycle. The authors examine security architectures and threat countermeasures for UNIX, .NET, Java, mobile, and Web environments. Finally, they explore the security of telecommunications and other distributed services through Service Oriented Architecture (SOA). The book employs a versatile multi-platform approach that allows users to seamlessly integrate the material into their own programming paradigm regardless of their individual programming backgrounds. The text also provides real-world code snippets for experimentation.

Define a Security Methodology from the Initial Phase of Development

 

 

Almost all assets in our lives have a virtual presence and the convergence of computer information and telecommunications makes these assets accessible to everyone in the world. This volume enables developers, engineers, and architects to approach security in a holistic fashion at the beginning of the software development lifecycle. By securing these systems from the project’s inception, the monetary and personal privacy catastrophes caused by weak systems can potentially be avoided.