Synopsis
Learn the Root Causes of Software Vulnerabilities and How to Avoid Them
Commonly exploited software vulnerabilities are usually caused by avoidable software defects. Having analyzed tens of thousands of vulnerability reports since 1988, CERT has determined that a relatively small number of root causes account for most of the vulnerabilities.
Secure Coding in C and C++, Second Edition, identifies and explains these root causes and shows the steps that can be taken to prevent exploitation. Moreover, this book encourages programmers to adopt security best practices and to develop a security mindset that can help protect software from tomorrow’s attacks, not just today’s. Drawing on the CERT’s reports and conclusions, Robert C. Seacord systematically identifies the program errors most likely to lead to security breaches, shows how they can be exploited, reviews the potential consequences, and presents secure alternatives.
Coverage includes technical detail on how to
- Improve the overall security of any C or C++ application
- Thwart buffer overflows, stack-smashing, and return-oriented programming attacks that exploit insecure string manipulation logic
- Avoid vulnerabilities and security flaws resulting from the incorrect use of dynamic memory management functions
- Eliminate integer-related problems resulting from signed integer overflows, unsigned integer wrapping, and truncation errors
- Perform secure I/O, avoiding file system vulnerabilities
- Correctly use formatted output functions without introducing format-string vulnerabilities
- Avoid race conditions and other exploitable vulnerabilities while developing concurrent code
The second edition features
- Updates for C11 and C++11
- Significant revisions to chapters on strings, dynamic memory management, and integer security
- A new chapter on concurrency
- Access to the online secure coding course offered through Carnegie Mellon’s Open Learning Initiative (OLI)
Secure Coding in C and C++, Second Edition, presents hundreds of examples of secure code, insecure code, and exploits, implemented for Windows and Linux. If you’re responsible for creating secure C or C++ software–or for keeping it safe–no other book offers you this much detailed, expert assistance.
"synopsis" may belong to another edition of this title.
About the Author
Robert C. Seacord is currently the Secure Coding Technical Manager in the CERT Program of Carnegie Mellon’s Software Engineering Institute (SEI). He is the author or coauthor of five books, including The CERT® C Secure Coding Standard (Addison-Wesley, 2009), and is the author and instructor of a video training series, Professional C Programming LiveLessons, Part I: Writing Robust, Secure, Reliable Code (Addison-Wesley, 2013).
"About this title" may belong to another edition of this title.
Search results for Secure Coding in C and C++ (SEI Series in Software...
Stock Image
Secure Coding in C and C SEI S
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Softcover
Seller: World of Books (was SecondSale), Montgomery, IL, U.S.A.
Seller rating 5 out of 5 stars
Condition: Good. Item in good condition. Textbooks may not include supplemental items i.e. CDs, access codes etc. Seller Inventory # 00094304839
Stock Image
Secure Coding in C and C++ (SEI Series in Software Engineering)
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Paperback
Seller: HPB-Red, Dallas, TX, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: Good. Connecting readers with great books since 1972! Used textbooks may not include companion materials such as access codes, etc. May have some wear or writing/highlighting. We ship orders daily and Customer Service is our top priority! Seller Inventory # S_425251731
Stock Image
Secure Coding in C and C++
Published by
Addison Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Softcover
Seller: Better World Books: West, Reno, NV, U.S.A.
Seller rating 5 out of 5 stars
Condition: Good. Used book that is in clean, average condition without any missing pages. Seller Inventory # 11213503-6
Stock Image
Secure Coding in C and C++ (2nd Edition) (SEI Series in Software Engineering)
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Paperback
Seller: Textbooks_Source, Columbia, MO, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: Good. 2nd Edition. Ships in a BOX from Central Missouri! May not include working access code. Will not include dust jacket. Has used sticker(s) and some writing or highlighting. UPS shipping for most packages, (Priority Mail for AK/HI/APO/PO Boxes). Seller Inventory # 001284265U
Seller Image
Secure Coding in C and C++
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Softcover
Seller: GreatBookPrices, Columbia, MD, U.S.A.
Seller rating 5 out of 5 stars
Condition: good. May show signs of wear, highlighting, writing, and previous use. This item may be a former library book with typical markings. No guarantee on products that contain supplements Your satisfaction is 100% guaranteed. Twenty-five year bookseller with shipments to over fifty million happy customers. Seller Inventory # 17851227-5
Seller Image
Secure Coding in C and C++ (SEI Series in Software Engineering)
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Softcover
Seller: Goodwill of Greater Milwaukee and Chicago, Racine, WI, U.S.A.
Seller rating 5 out of 5 stars
Condition: good. Book is considered to be in good or better condition. The actual cover image may not match the stock photo. Hard cover books may show signs of wear on the spine, cover or dust jacket. Paperback book may show signs of wear on spine or cover as well as having a slight bend, curve or creasing to it. Book should have minimal to no writing inside and no highlighting. Pages should be free of tears or creasing. Stickers should not be present on cover or elsewhere, and any CD or DVD expected with the book is included. Book is not a former library copy. Seller Inventory # SEWV.0321822137.G
Seller Image
Secure Coding in C and C++
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Softcover
Seller: GreatBookPricesUK, Woodford Green, United Kingdom
Seller rating 5 out of 5 stars
Condition: good. May show signs of wear, highlighting, writing, and previous use. This item may be a former library book with typical markings. No guarantee on products that contain supplements Your satisfaction is 100% guaranteed. Twenty-five year bookseller with shipments to over fifty million happy customers. Seller Inventory # 17851227-5
Buy Used
US$ 39.44
Shipping:
US$ 19.70
From United Kingdom to U.S.A.
Quantity: 4 available
Stock Image
Secure Coding in C and C++ (SEI Series in Software Engineering)
Published by
Addison-Wesley Professional, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
New
Paperback
Seller: Toscana Books, AUSTIN, TX, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: new. Excellent Condition.Excels in customer satisfaction, prompt replies, and quality checks. Seller Inventory # Scanned0321822137
Stock Image
Secure Coding in C and C++ (SEI Series in Software Engineering (Paperback))
Published by
Pearson Education (US), United States, New Jersey, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Paperback
Seller: WorldofBooks, Goring-By-Sea, WS, United Kingdom
Seller rating 5 out of 5 stars
Paperback. Condition: Very Good. Learn the Root Causes of Software Vulnerabilities and How to Avoid Them Commonly exploited software vulnerabilities are usually caused by avoidable software defects. Having analyzed tens of thousands of vulnerability reports since 1988, CERT has determined that a relatively small number of root causes account for most of the vulnerabilities. Secure Coding in C and C++, Second Edition, identifies and explains these root causes and shows the steps that can be taken to prevent exploitation. Moreover, this book encourages programmers to adopt security best practices and to develop a security mindset that can help protect software from tomorrows attacks, not just todays. Drawing on the CERTs reports and conclusions, Robert C. Seacord systematically identifies the program errors most likely to lead to security breaches, shows how they can be exploited, reviews the potential consequences, and presents secure alternatives. Coverage includes technical detail on how to Improve the overall security of any C or C++ application Thwart buffer overflows, stack-smashing, and return-oriented programming attacks that exploit insecure string manipulation logic Avoid vulnerabilities and security flaws resulting from the incorrect use of dynamic memory management functions Eliminate integer-related problems resulting from signed integer overflows, unsigned integer wrapping, and truncation errors Perform secure I/O, avoiding file system vulnerabilities Correctly use formatted output functions without introducing format-string vulnerabilities Avoid race conditions and other exploitable vulnerabilities while developing concurrent code The second edition features Updates for C11 and C++11 Significant revisions to chapters on strings, dynamic memory management, and integer security A new chapter on concurrency Access to the online secure coding course offered through Carnegie Mellons Open Learning Initiative (OLI) Secure Coding in C and C++, Second Edition, presents hundreds of examples of secure code, insecure code, and exploits, implemented for Windows and Linux. If youre responsible for creating secure C or C++ softwareor for keeping it safeno other book offers you this much detailed, expert assistance. The book has been read, but is in excellent condition. Pages are intact and not marred by notes or highlighting. The spine remains undamaged. Seller Inventory # GOR011524058
Buy Used
US$ 110.37
Shipping:
US$ 7.36
From United Kingdom to U.S.A.
Quantity: 2 available
Stock Image
Secure Coding in C and C++ (SEI Series in Software Engineering (Paperback))
Published by
Pearson Education (US), United States, New Jersey, 2013
ISBN 10: 0321822137
ISBN 13: 9780321822130
Used
Paperback
Seller: WorldofBooks, Goring-By-Sea, WS, United Kingdom
Seller rating 5 out of 5 stars
Paperback. Condition: Good. Learn the Root Causes of Software Vulnerabilities and How to Avoid Them Commonly exploited software vulnerabilities are usually caused by avoidable software defects. Having analyzed tens of thousands of vulnerability reports since 1988, CERT has determined that a relatively small number of root causes account for most of the vulnerabilities. Secure Coding in C and C++, Second Edition, identifies and explains these root causes and shows the steps that can be taken to prevent exploitation. Moreover, this book encourages programmers to adopt security best practices and to develop a security mindset that can help protect software from tomorrows attacks, not just todays. Drawing on the CERTs reports and conclusions, Robert C. Seacord systematically identifies the program errors most likely to lead to security breaches, shows how they can be exploited, reviews the potential consequences, and presents secure alternatives. Coverage includes technical detail on how to Improve the overall security of any C or C++ application Thwart buffer overflows, stack-smashing, and return-oriented programming attacks that exploit insecure string manipulation logic Avoid vulnerabilities and security flaws resulting from the incorrect use of dynamic memory management functions Eliminate integer-related problems resulting from signed integer overflows, unsigned integer wrapping, and truncation errors Perform secure I/O, avoiding file system vulnerabilities Correctly use formatted output functions without introducing format-string vulnerabilities Avoid race conditions and other exploitable vulnerabilities while developing concurrent code The second edition features Updates for C11 and C++11 Significant revisions to chapters on strings, dynamic memory management, and integer security A new chapter on concurrency Access to the online secure coding course offered through Carnegie Mellons Open Learning Initiative (OLI) Secure Coding in C and C++, Second Edition, presents hundreds of examples of secure code, insecure code, and exploits, implemented for Windows and Linux. If youre responsible for creating secure C or C++ softwareor for keeping it safeno other book offers you this much detailed, expert assistance. The book has been read but remains in clean condition. All pages are intact and the cover is intact. Some minor wear to the spine. Seller Inventory # GOR009688699
Buy Used
US$ 110.37
Shipping:
US$ 7.36
From United Kingdom to U.S.A.
Quantity: 1 available