Secure and Resilient Software: Requirements, Test Cases, and Testing Methods

5 avg rating
( 1 ratings by Goodreads )
 
9781439866214: Secure and Resilient Software: Requirements, Test Cases, and Testing Methods

Secure and Resilient Software: Requirements, Test Cases, and Testing Methods provides a comprehensive set of requirements for secure and resilient software development and operation. It supplies documented test cases for those requirements as well as best practices for testing nonfunctional requirements for improved information assurance. This resource-rich book includes:

  • Pre-developed nonfunctional requirements that can be reused for any software development project
  • Documented test cases that go along with the requirements and can be used to develop a Test Plan for the software
  • Testing methods that can be applied to the test cases provided
  • A CD with all security requirements and test cases as well as MS Word versions of the checklists, requirements, and test cases covered in the book

Offering ground-level, already-developed software nonfunctional requirements and corresponding test cases and methods, this book will help to ensure that your software meets its nonfunctional requirements for security and resilience. The accompanying CD filled with helpful checklists and reusable documentation provides you with the tools needed to integrate security into the requirements analysis, design, and testing phases of your software development lifecycle.

Some Praise for the Book:

This book pulls together the state of the art in thinking about this important issue in a holistic way with several examples. It takes you through the entire lifecycle from conception to implementation ... .
―Doug Cavit, Chief Security Strategist, Microsoft Corporation

...provides the reader with the tools necessary to jump-start and mature security within the software development lifecycle (SDLC).
―Jeff Weekes, Sr. Security Architect at Terra Verde Services

... full of useful insights and practical advice from two authors who have lived this process. What you get is a tactical application security roadmap that cuts through the noise and is immediately applicable to your projects.
―Jeff Williams, Aspect Security CEO and Volunteer Chair of the OWASP Foundation

"synopsis" may belong to another edition of this title.

About the Author:

Mark S. Merkow, CISSP, CISM, CSSLP works at PayPal Inc. (an eBay company) in Scottsdale, Arizona, as Manager of Information Security Policies, Standards, Training, and Awareness in the Information Risk Management area. Mark has more than 35 years of experience in information technology in a variety of roles, including applications development, systems analysis and design, security engineering, and security management. Mark holds a masters degree in decision and info systems from Arizona State University (ASU), a masters of education in distance learning from ASU, and an undergraduate degree in computer info systems from ASU. In addition to his day job, Mark engages in a number of other extracurricular activities, including consulting, course development, online course delivery, and writing columns and books on information technology and information security.

Mark has authored or coauthored ten books on IT and is a contributing editor on four others. Mark remains very active within the information security community, working in a variety of roles for the Financial Services Information Sharing and Analysis Center (FS-ISAC), the Financial Services Technology Consortium (FSTC), and the Financial Services Sector Coordinating Council (FSCCC) on Homeland Security and Critical Infrastructure Protection.

He is the chairman of the Education Committee for the FS-ISAC and is a founding member of the Research and Development Committee of the FSSCC.

Lakshmikanth Raghavan, CISM, CRISC (Laksh) works at PayPal Inc. (an eBay company) as Staff Information Security Engineer in the Information Risk Management area, specializing in application security. Laksh has more than ten years of experience in the areas of information security and information risk management, and has provided consulting services to Fortune 500 companies and financial services companies around the world. Laksh holds a bachelor’s degree in electronics and telecommunication engineering from the University of Madras, India. He enjoys writing security-related articles and has spoken on the various dimensions of software security at industry forums and security conferences. This is Laksh’s second book.

Review:

Developing more secure and resilient software has to be an integral part of the design and the implementation of an application and not an afterthought. The key to better security and resiliency comes down to education, continuous improvement and accountability. This book pulls together the state of the art in thinking about this important issue in a holistic way with several examples. It takes you through the entire lifecycle from conception to implementation and highlights where methodologies like the Microsoft Security Development Lifecycle can play a significant role in improving the security and reliability of your software.
―Doug Cavit, Chief Security Strategist, Microsoft Corporation

Demonstrating thorough understanding of the problems facing development organizations today, Secure and Resilient Software provides the reader with the tools necessary to jump-start and mature security within the software development lifecycle (SDLC). The authors bridge the gap between theory and practical application by providing valuable processes, checklists, frameworks, and examples. The material presented fills a gap that was desperately needed and is a must read for anyone participating in requirements gathering, quality assurance, development, and/or application security testing processes.
―Jeff Weekes, Sr. Security Architect at Terra Verde Services

It’s hard to imagine a more difficult and less well understood challenge than developing secure and resilient software. This book is full of useful insights and practical advice from two authors who have lived this process. What you get is a tactical application security roadmap that cuts through the noise and is immediately applicable to your projects. What’s really unique is the way that the book links together different standards to illuminate security across the entire software development process. You’ll learn how security evolves from threats to security requirements, through security services like OWASP ESAPI, into security architecture, and then into security testing and analysis leveraging OWASP ASVS. Highly recommended for anyone who cares about the future of the world’s software.
―Jeff Williams, Aspect Security CEO and Volunteer Chair of the OWASP Foundation

"About this title" may belong to another edition of this title.

Top Search Results from the AbeBooks Marketplace

1.

Merkow, Mark S.; Merkow, Mark S; Raghavan, Lakshmikanth
ISBN 10: 143986621X ISBN 13: 9781439866214
New Quantity Available: 3
Seller:
GreatBookPrices
(Columbia, MD, U.S.A.)
Rating
[?]

Book Description Book Condition: New. Bookseller Inventory # 14040050-n

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 80.27
Convert Currency

Add to Basket

Shipping: US$ 2.64
Within U.S.A.
Destination, Rates & Speeds

2.

Merkow, Mark S.
Published by Taylor and Francis (2011)
ISBN 10: 143986621X ISBN 13: 9781439866214
New Quantity Available: 3
Seller:
Paperbackshop-US
(Wood Dale, IL, U.S.A.)
Rating
[?]

Book Description Taylor and Francis, 2011. HRD. Book Condition: New. New Book. Shipped from US within 10 to 14 business days. Established seller since 2000. Bookseller Inventory # VT-9781439866214

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 78.93
Convert Currency

Add to Basket

Shipping: US$ 3.99
Within U.S.A.
Destination, Rates & Speeds

3.

MERKOW, MARK S.; RAGHAVAN, LAKSHMIKANTH.
Published by Auerbach Publications (2017)
ISBN 10: 143986621X ISBN 13: 9781439866214
New Hardcover Quantity Available: 1
Print on Demand
Seller:
Herb Tandree Philosophy Books
(Stroud, GLOS, United Kingdom)
Rating
[?]

Book Description Auerbach Publications, 2017. Hardback. Book Condition: NEW. 9781439866214 This listing is a new book, a title currently in-print which we order directly and immediately from the publisher. Print on Demand title, produced to the highest standard, and there would be a delay in dispatch of around 10 working days. For all enquiries, please contact Herb Tandree Philosophy Books directly - customer service is our primary goal. Bookseller Inventory # HTANDREE0203752

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 87.88
Convert Currency

Add to Basket

Shipping: US$ 10.66
From United Kingdom to U.S.A.
Destination, Rates & Speeds

4.

Mark S. Merkow, Lakshmikanth Raghavan
Published by Taylor Francis Ltd, United Kingdom (2011)
ISBN 10: 143986621X ISBN 13: 9781439866214
New Hardcover Quantity Available: 1
Seller:
Book Depository hard to find
(London, United Kingdom)
Rating
[?]

Book Description Taylor Francis Ltd, United Kingdom, 2011. Hardback. Book Condition: New. Language: English . This book usually ship within 10-15 business days and we will endeavor to dispatch orders quicker than this where possible. Brand New Book. Secure and Resilient Software: Requirements, Test Cases, and Testing Methods provides a comprehensive set of requirements for secure and resilient software development and operation. It supplies documented test cases for those requirements as well as best practices for testing nonfunctional requirements for improved information assurance. This resource-rich book includes: * Pre-developed nonfunctional requirements that can be reused for any software development project * Documented test cases that go along with the requirements and can be used to develop a Test Plan for the software * Testing methods that can be applied to the test cases provided * A CD with all security requirements and test cases as well as MS Word versions of the checklists, requirements, and test cases covered in the book Offering ground-level, already-developed software nonfunctional requirements and corresponding test cases and methods, this book will help to ensure that your software meets its nonfunctional requirements for security and resilience. The accompanying CD filled with helpful checklists and reusable documentation provides you with the tools needed to integrate security into the requirements analysis, design, and testing phases of your software development lifecycle. Some Praise for the Book: This book pulls together the state of the art in thinking about this important issue in a holistic way with several examples. It takes you through the entire lifecycle from conception to implementation .-Doug Cavit, Chief Security Strategist, Microsoft Corporation .provides the reader with the tools necessary to jump-start and mature security within the software development lifecycle (SDLC). -Jeff Weekes, Sr. Security Architect at Terra Verde Services .full of useful insights and practical advice from two authors who have lived this process. What you get is a tactical application security roadmap that cuts through the noise and is immediately applicable to your projects. -Jeff Williams, Aspect Security CEO and Volunteer Chair of the OWASP Foundation. Bookseller Inventory # BTE9781439866214

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 108.15
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

5.

Merkow, Mark S. (Author)/ Raghavan, Lakshmikanth (Author)
Published by Auerbach Pub (2011)
ISBN 10: 143986621X ISBN 13: 9781439866214
New Hardcover Quantity Available: 1
Seller:
Revaluation Books
(Exeter, United Kingdom)
Rating
[?]

Book Description Auerbach Pub, 2011. Hardcover. Book Condition: Brand New. 1st edition. 304 pages. 9.45x6.18x0.83 inches. In Stock. Bookseller Inventory # __143986621X

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 103.50
Convert Currency

Add to Basket

Shipping: US$ 8.00
From United Kingdom to U.S.A.
Destination, Rates & Speeds

6.

Merkow, Mark S., Raghavan, Lakshmikanth
Published by Auerbach Publications (2011)
ISBN 10: 143986621X ISBN 13: 9781439866214
New Hardcover Quantity Available: 2
Seller:
Murray Media
(North Miami Beach, FL, U.S.A.)
Rating
[?]

Book Description Auerbach Publications, 2011. Hardcover. Book Condition: New. Never used!. Bookseller Inventory # P11143986621X

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 138.90
Convert Currency

Add to Basket

Shipping: US$ 1.99
Within U.S.A.
Destination, Rates & Speeds

7.

Mark S Merkow
ISBN 10: 143986621X ISBN 13: 9781439866214
New Hardcover Quantity Available: 1
Seller:
AussieBookSeller
(SILVERWATER, NSW, Australia)
Rating
[?]

Book Description 2011. Hardcover. Book Condition: New. Hardcover. Secure and Resilient Software: Requirements, Test Cases, and Testing Methods provides a comprehensive set of requirements for secure and resilient software development and ope.Shipping may be from our Sydney, NSW warehouse or from our UK or US warehouse, depending on stock availability. 258 pages. 0.554. Bookseller Inventory # 9781439866214

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 121.21
Convert Currency

Add to Basket

Shipping: US$ 37.00
From Australia to U.S.A.
Destination, Rates & Speeds