The Security Development Lifecycle (Developer Best Practices)

3.83 avg rating
( 40 ratings by Goodreads )
 
9780735622142: The Security Development Lifecycle (Developer Best Practices)
View all copies of this ISBN edition:
 
 

Your customers demand and deserve better security and privacy in their software. This book is the first to detail a rigorous, proven methodology that measurably minimizes security bugs—the Security Development Lifecycle (SDL). In this long-awaited book, security experts Michael Howard and Steve Lipner from the Microsoft Security Engineering Team guide you through each stage of the SDL—from education and design to testing and post-release. You get their first-hand insights, best practices, a practical history of the SDL, and lessons to help you implement the SDL in any development organization.

Discover how to:

  • Use a streamlined risk-analysis process to find security design issues before code is committed
  • Apply secure-coding best practices and a proven testing process
  • Conduct a final security review before a product ships
  • Arm customers with prescriptive guidance to configure and deploy your product more securely
  • Establish a plan to respond to new security vulnerabilities
  • Integrate security discipline into agile methods and processes, such as Extreme Programming and Scrum

Includes a CD featuring:

  • A six-part security class video conducted by the authors and other Microsoft security experts
  • Sample SDL documents and fuzz testing tool

PLUS—Get book updates on the Web.

A Note Regarding the CD or DVD

The print version of this book ships with a CD or DVD. For those customers purchasing one of the digital formats in which this book is available, we are pleased to offer the CD/DVD content as a free download via O'Reilly Media's Digital Distribution services. To download this content, please visit O'Reilly's web site, search for the title of this book to find its catalog page, and click on the link below the cover image (Examples, Companion Content, or Practice Files). Note that while we provide as much of the media content as we are able via free download, we are sometimes limited by licensing restrictions. Please direct any questions or concerns to booktech@oreilly.com.

"synopsis" may belong to another edition of this title.

From the Publisher:

The software industry is clamoring to learn more about the SDL methodology. With insights direct from Microsoft’s security team, where these techniques have been developed and proven to help reduce code defects, this book premieres SDL to a worldwide audience and is the first to detail the methodology stage by stage.

Key Book Benefits:

· Delivers practical, proven advice from the experts for minimizing security-related code defects

· Details a methodology that can be applied to any development process, with outstanding results

· Includes a CD-ROM with video training classes for developers conducted by coauthor Michael Howard, a security program manager at Microsoft

About the Author:

Michael Howard, CISSP, is a leading security expert. He is a senior security program manager at Microsoft® and the coauthor of The Software Security Development Lifecycle. Michael has worked on Windows security since 1992 and now focuses on secure design, programming, and testing techniques. He is the consulting editor for the Secure Software Development Series of books by Microsoft Press.

Steve Lipner, CISSP, is the senior director of Security Engineering Strategy for Microsoft. He is responsible for defining and updating the Security Development Lifecycle and has pioneered numerous security techniques. Steve has over 35 years’ experience as a researcher, development manager, and general manager in IT security.

"About this title" may belong to another edition of this title.

Top Search Results from the AbeBooks Marketplace

1.

Howard, Michael, Lipner, Steve
Published by Microsoft Press (2006)
ISBN 10: 0735622140 ISBN 13: 9780735622142
New Paperback Quantity Available: 2
Seller:
Murray Media
(North Miami Beach, FL, U.S.A.)
Rating
[?]

Book Description Microsoft Press, 2006. Paperback. Condition: New. Never used!. Seller Inventory # P110735622140

More Information About This Seller | Contact this Seller

Buy New
US$ 77.29
Convert Currency

Add to Basket

Shipping: US$ 1.99
Within U.S.A.
Destination, Rates & Speeds

2.

Howard, Michael, Lipner, Steve
Published by Microsoft Press (2006)
ISBN 10: 0735622140 ISBN 13: 9780735622142
New Paperback Quantity Available: 2
Seller:
Save With Sam
(North Miami, FL, U.S.A.)
Rating
[?]

Book Description Microsoft Press, 2006. Paperback. Condition: New. Brand New!. Seller Inventory # VIB0735622140

More Information About This Seller | Contact this Seller

Buy New
US$ 77.29
Convert Currency

Add to Basket

Shipping: US$ 3.00
Within U.S.A.
Destination, Rates & Speeds

3.

Michael Howard, Steve Lipner
Published by Microsoft Press (2006)
ISBN 10: 0735622140 ISBN 13: 9780735622142
New Paperback Quantity Available: 1
Seller:
Ergodebooks
(RICHMOND, TX, U.S.A.)
Rating
[?]

Book Description Microsoft Press, 2006. Paperback. Condition: New. Seller Inventory # DADAX0735622140

More Information About This Seller | Contact this Seller

Buy New
US$ 108.07
Convert Currency

Add to Basket

Shipping: US$ 4.99
Within U.S.A.
Destination, Rates & Speeds