skip to content
Innocent code : a security wake-up call for Web programmers Preview this item
ClosePreview this item
Checking...

Innocent code : a security wake-up call for Web programmers

Author: Sverre H Huseby
Publisher: New York : John Wiley & Sons, ©2004.
Edition/Format:   eBook : Document : EnglishView all editions and formats
Summary:
* This concise and practical book shows where code vulnerabilities lie-without delving into the specifics of each system architecture, programming or scripting language, or application-and how best to fix them* Based on real-world situations taken from the author's experiences of tracking coding mistakes at major financial institutions* Covers SQL injection attacks, cross-site scripting, data manipulation in order  Read more...
Rating:

(not yet rated) 0 with reviews - Be the first.

Subjects
More like this

 

Find a copy in the library

&AllPage.SpinnerRetrieving; Finding libraries that hold this item...

Details

Genre/Form: Electronic books
Additional Physical Format: Print version:
Huseby, Sverre H.
Innocent code.
New York : John Wiley & Sons, ©2004
(DLC) 2003015774
Material Type: Document, Internet resource
Document Type: Internet Resource, Computer File
All Authors / Contributors: Sverre H Huseby
ISBN: 0470857447 9780470857441 0470857471 9780470857472
OCLC Number: 70720139
Reproduction Notes: Electronic reproduction. [S.l.] : HathiTrust Digital Library, 2010. MiAaHDL
Description: 1 online resource (xix, 226 pages) : illustrations
Details: Master and use copy. Digital master created according to Benchmark for Faithful Digital Reproductions of Monographs and Serials, Version 1. Digital Library Federation, December 2002.
Contents: The basics --
Passing data to subsystems --
User input --
Output handling : the cross-site scripting problem --
Web Trojans --
Passwords and other secrets --
Enemies of secure code --
Summary of rules for secure coding.
Responsibility: Sverre H. Huseby.
More information:

Abstract:

This concise and practical book will show where code vulnerabilities lie and how best to fix them. Its value is in showing where most coding errors lie, without needing to delve into the specifics of  Read more...

Reviews

Editorial reviews

Publisher Synopsis

the security book that all web developers need to read sound advice ignore at peril (Tech Book Report, January 2004) " achieves its aims admirably " (PC Utilities, April 2004) Read more...

 
User-contributed reviews
Retrieving GoodReads reviews...
Retrieving DOGObooks reviews...

Tags

Be the first.
Confirm this request

You may have already requested this item. Please select Ok if you would like to proceed with this request anyway.

Linked Data


Primary Entity

<http://www.worldcat.org/oclc/70720139> # Innocent code : a security wake-up call for Web programmers
    a schema:MediaObject, schema:Book, schema:CreativeWork ;
    library:oclcnum "70720139" ;
    library:placeOfPublication <http://id.loc.gov/vocabulary/countries/nyu> ;
    library:placeOfPublication <http://dbpedia.org/resource/New_York_City> ; # New York
    rdfs:comment "Warning: This malformed URI has been treated as a string - 'http://images.contentreserve.com/ImageType-100/0128-1/{2CDBE08E-7E95-474E-86F1-F258575745D7}Img100.jpg'" ;
    schema:about <http://id.loc.gov/authorities/subjects/sh2010118447> ; # World Wide Web--Security measures
    schema:about <http://id.worldcat.org/fast/872484> ; # Computer security
    schema:about <http://id.worldcat.org/fast/1181329> ; # World Wide Web--Security measures
    schema:about <http://id.worldcat.org/fast/872341> ; # Computer networks--Security measures
    schema:about <http://dewey.info/class/005.8/e22/> ;
    schema:about <http://experiment.worldcat.org/entity/work/data/793973686#Thing/andre_fag_naturvidenskab_og_teknik> ; # Andre fag (naturvidenskab og teknik)
    schema:about <http://experiment.worldcat.org/entity/work/data/793973686#Topic/computers_networking_security> ; # COMPUTERS--Networking--Security
    schema:about <http://id.loc.gov/authorities/subjects/sh94001277> ; # Computer networks--Security measures
    schema:about <http://experiment.worldcat.org/entity/work/data/793973686#Topic/computers_internet_security> ; # COMPUTERS--Internet--Security
    schema:about <http://experiment.worldcat.org/entity/work/data/793973686#Topic/computers_security_general> ; # COMPUTERS--Security--General
    schema:bookFormat schema:EBook ;
    schema:copyrightYear "2004" ;
    schema:creator <http://viaf.org/viaf/314806791> ; # Sverre H. Huseby
    schema:datePublished "2004" ;
    schema:description "* This concise and practical book shows where code vulnerabilities lie-without delving into the specifics of each system architecture, programming or scripting language, or application-and how best to fix them* Based on real-world situations taken from the author's experiences of tracking coding mistakes at major financial institutions* Covers SQL injection attacks, cross-site scripting, data manipulation in order to bypass authorization, and other attacks that work because of missing pieces of code* Shows developers how to change their mindset from Web site construction to Web site destructio."@en ;
    schema:description "The basics -- Passing data to subsystems -- User input -- Output handling : the cross-site scripting problem -- Web Trojans -- Passwords and other secrets -- Enemies of secure code -- Summary of rules for secure coding."@en ;
    schema:exampleOfWork <http://worldcat.org/entity/work/id/793973686> ;
    schema:genre "Electronic books"@en ;
    schema:inLanguage "en" ;
    schema:isSimilarTo <http://worldcat.org/entity/work/data/793973686#CreativeWork/innocent_code> ;
    schema:name "Innocent code : a security wake-up call for Web programmers"@en ;
    schema:productID "70720139" ;
    schema:publication <http://www.worldcat.org/title/-/oclc/70720139#PublicationEvent/new_york_john_wiley_&_sons_2004> ;
    schema:publisher <http://experiment.worldcat.org/entity/work/data/793973686#Agent/john_wiley_&_sons> ; # John Wiley & Sons
    schema:url <http://books.google.com/books?id=G9VQAAAAMAAJ> ;
    schema:url <http://catdir.loc.gov/catdir/toc/wiley032/2003015774.html> ;
    schema:url "http://images.contentreserve.com/ImageType-100/0128-1/{2CDBE08E-7E95-474E-86F1-F258575745D7}Img100.jpg" ;
    schema:url <http://www.123library.org/book_details/?id=11857> ;
    schema:url <http://www.netLibrary.com/urlapi.asp?action=summary&v=1&bookid=119294> ;
    schema:url <http://www.myilibrary.com?id=27073> ;
    schema:url <http://ebookcentral.proquest.com/lib/columbia/detail.action?docID=210558> ;
    schema:url <http://public.eblib.com/choice/publicfullrecord.aspx?p=210558> ;
    schema:url <http://search.ebscohost.com/login.aspx?direct=true&scope=site&db=nlebk&db=nlabk&AN=119294> ;
    schema:url <http://public.ebookcentral.proquest.com/choice/publicfullrecord.aspx?p=210558> ;
    schema:url <http://site.ebrary.com/id/10114061> ;
    schema:url <https://www.overdrive.com/search?q=2CDBE08E-7E95-474E-86F1-F258575745D7> ;
    schema:url <http://catalog.hathitrust.org/api/volumes/oclc/52687932.html> ;
    schema:workExample <http://worldcat.org/isbn/9780470857441> ;
    schema:workExample <http://worldcat.org/isbn/9780470857472> ;
    wdrs:describedby <http://www.worldcat.org/title/-/oclc/70720139> ;
    .


Related Entities

<http://dbpedia.org/resource/New_York_City> # New York
    a schema:Place ;
    schema:name "New York" ;
    .

<http://experiment.worldcat.org/entity/work/data/793973686#Agent/john_wiley_&_sons> # John Wiley & Sons
    a bgn:Agent ;
    schema:name "John Wiley & Sons" ;
    .

<http://experiment.worldcat.org/entity/work/data/793973686#Thing/andre_fag_naturvidenskab_og_teknik> # Andre fag (naturvidenskab og teknik)
    a schema:Thing ;
    schema:name "Andre fag (naturvidenskab og teknik)" ;
    .

<http://experiment.worldcat.org/entity/work/data/793973686#Topic/computers_internet_security> # COMPUTERS--Internet--Security
    a schema:Intangible ;
    schema:name "COMPUTERS--Internet--Security"@en ;
    .

<http://experiment.worldcat.org/entity/work/data/793973686#Topic/computers_networking_security> # COMPUTERS--Networking--Security
    a schema:Intangible ;
    schema:name "COMPUTERS--Networking--Security"@en ;
    .

<http://experiment.worldcat.org/entity/work/data/793973686#Topic/computers_security_general> # COMPUTERS--Security--General
    a schema:Intangible ;
    schema:name "COMPUTERS--Security--General"@en ;
    .

<http://id.loc.gov/authorities/subjects/sh2010118447> # World Wide Web--Security measures
    a schema:Intangible ;
    schema:name "World Wide Web--Security measures"@en ;
    .

<http://id.loc.gov/authorities/subjects/sh94001277> # Computer networks--Security measures
    a schema:Intangible ;
    schema:name "Computer networks--Security measures"@en ;
    .

<http://id.worldcat.org/fast/1181329> # World Wide Web--Security measures
    a schema:Intangible ;
    schema:name "World Wide Web--Security measures"@en ;
    .

<http://id.worldcat.org/fast/872341> # Computer networks--Security measures
    a schema:Intangible ;
    schema:name "Computer networks--Security measures"@en ;
    .

<http://id.worldcat.org/fast/872484> # Computer security
    a schema:Intangible ;
    schema:name "Computer security"@en ;
    .

<http://viaf.org/viaf/314806791> # Sverre H. Huseby
    a schema:Person ;
    schema:familyName "Huseby" ;
    schema:givenName "Sverre H." ;
    schema:name "Sverre H. Huseby" ;
    .

<http://worldcat.org/entity/work/data/793973686#CreativeWork/innocent_code>
    a schema:CreativeWork ;
    rdfs:label "Innocent code." ;
    schema:description "Print version:" ;
    schema:isSimilarTo <http://www.worldcat.org/oclc/70720139> ; # Innocent code : a security wake-up call for Web programmers
    .

<http://worldcat.org/isbn/9780470857441>
    a schema:ProductModel ;
    schema:isbn "0470857447" ;
    schema:isbn "9780470857441" ;
    .

<http://worldcat.org/isbn/9780470857472>
    a schema:ProductModel ;
    schema:isbn "0470857471" ;
    schema:isbn "9780470857472" ;
    .


Content-negotiable representations

Close Window

Please sign in to WorldCat 

Don't have an account? You can easily create a free account.