Pub. Date:
McGraw-Hill Professional Publishing
Web Application Security, A Beginner's Guide / Edition 1

Web Application Security, A Beginner's Guide / Edition 1

by Vincent Liu, Bryan SullivanVincent Liu
Current price is , Original price is $42.0. You

Temporarily Out of Stock Online

Please check back later for updated availability.


“Get to know the hackers—or plan on getting hacked. Sullivan and Liu have created a savvy, essentials-based approach to web app security packed with immediately applicable tools for any information security practitioner sharpening his or her tools or just starting out.” —Ryan McGeehan, Security Manager, Facebook, Inc.

Secure web applications from today's most devious hackers. Web Application Security: A Beginner's Guide helps you stock your security toolkit, prevent common hacks, and defend quickly against malicious attacks.

This practical resource includes chapters on authentication, authorization, and session management, along with browser, database, and file security—all supported by true stories from industry. You'll also get best practices for vulnerability detection and secure development, as well as a chapter that covers essential security fundamentals. This book's templates, checklists, and examples are designed to help you get started right away.

Web Application Security: A Beginner's Guide features:

  • Lingo—Common security terms defined so that you're in the know on the job
  • IMHO—Frank and relevant opinions based on the authors' years of industry experience
  • Budget Note—Tips for getting security technologies and processes into your organization's budget
  • In Actual Practice—Exceptions to the rules of security explained in real-world contexts
  • Your Plan—Customizable checklists you can use on the job now
  • Into Action—Tips on how, why, and when to apply new skills and techniques at work

Product Details

ISBN-13: 9780071776165
Publisher: McGraw-Hill Professional Publishing
Publication date: 11/03/2011
Series: Beginner's Guide Series
Pages: 352
Product dimensions: 7.30(w) x 9.00(h) x 0.70(d)

About the Author

Bryan Sullivan is a senior security researcher at Adobe Systems, where he focuses on web and cloud security issues. He was previously a security program manager on the Microsoft Security Development Lifecycle team and a development manager at HP, where he helped to design HP's vulnerability scanning tools, Webinspect and Devinspect.

Vincent Liu, CISSP, is a managing partner at Stach & Liu. He previously led the Attack & Penetration and Reverse Engineering teams for Honeywell's Global Security group and was an analyst at the National Security Agency. Vincent is a coauthor of Hacking Exposed: Web Applications, Third Edition and Hacking Exposed Wireless, Second Edition.

Table of Contents

Part I: Primer

Chapter 1. Welcome to the Wide World of Web Application Security

Chapter 2. Security Fundamentals

Part II: Web Application Security Principles

Chapter 3. Authentication

Chapter 4. Authorization

Chapter 5. Browser Security Principles: The Same-Origin Policy

Chapter 6. Browser Security Principles: Cross-Site Scripting and Cross-Site Request Forgery

Chapter 7. Database Security Principles

Chapter 8. File Security Principles

Part III: Secure Development and Deployment

Chapter 9. Secure Development Methodologies

Epilogue: The Wizard, the Giant, and the Magic Fruit Trees: A Happy Ending


Customer Reviews