Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More (Paperback)
暫譯: C 和 C++ 安全程式設計食譜:加密、身份驗證、輸入驗證等配方 (平裝本)

John Viega, Matt Messier

Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More (Paperback)
  • 出版商: O'Reilly
  • 出版日期: 2003-08-19
  • 定價: $2,625
  • 售價: 9.5$2,494
  • 貴賓價: 9.0$2,363
  • 語言: 英文
  • 頁數: 792
  • 裝訂: Paperback
  • ISBN: 0596003943
  • ISBN-13: 9780596003944
  • 相關分類: C 程式語言C++ 程式語言Penetration-test

    • 立即出貨 (庫存=1)

買這商品的人也買了...

商品描述

Password sniffing, spoofing, buffer overflows, and denial of service: these are only a few of the attacks on today's computer systems and networks. At the root of this epidemic is poorly written, poorly tested, and insecure code that puts everyone at risk. Clearly, today's developers need help figuring out how to write code that attackers won't be able to exploit. But writing such code is surprisingly difficult.

Secure Programming Cookbook for C and C++ is an important new resource for developers serious about writing secure code. It contains a wealth of solutions to problems faced by those who care about the security of their applications. It covers a wide range of topics, including safe initialization, access control, input validation, symmetric and public key cryptography, cryptographic hashes and MACs, authentication and key exchange, PKI, random numbers, and anti-tampering. The rich set of code samples provided in the book's more than 200 recipes will help programmers secure the C and C++ programs they write for both Unix® (including Linux®) and Windows® environments. Readers will learn:

  • How to avoid common programming errors, such as buffer overflows, race conditions, and format string problems
  • How to properly SSL-enable applications
  • How to create secure channels for client-server communication without SSL
  • How to integrate Public Key Infrastructure (PKI) into applications
  • Best practices for using cryptography properly
  • Techniques and strategies for properly validating input to programs
  • How to launch programs securely
  • How to use file access mechanisms properly
  • Techniques for protecting applications from reverse engineering
The book's web site supplements the book by providing a place to post new recipes, including those written in additional languages like Perl, Java, and Python. Monthly prizes will reward the best recipes submitted by readers.

Secure Programming Cookbook for C and C++ is destined to become an essential part of any developer's library, a code companion developers will turn to again and again as they seek to protect their systems from attackers and reduce the risks they face in today's dangerous world.

商品描述(中文翻譯)

密碼嗅探、欺騙、緩衝區溢位和拒絕服務攻擊:這些只是當今計算機系統和網絡面臨的一些攻擊。這場疫情的根源在於編寫不良、測試不充分和不安全的代碼,這使每個人都面臨風險。顯然,當今的開發人員需要幫助,以找出如何編寫攻擊者無法利用的代碼。然而,編寫這樣的代碼出乎意料地困難。

《C 和 C++ 安全編程食譜》是一本對於認真編寫安全代碼的開發人員來說非常重要的新資源。它包含了大量針對那些關心其應用程序安全的開發人員所面臨問題的解決方案。書中涵蓋了廣泛的主題,包括安全初始化、訪問控制、輸入驗證、對稱和公鑰加密、加密哈希和 MAC、身份驗證和密鑰交換、公共密鑰基礎設施 (PKI)、隨機數和防篡改。書中提供的超過 200 個食譜中的豐富代碼範例將幫助程序員保護他們為 Unix®(包括 Linux®)和 Windows® 環境編寫的 C 和 C++ 程序。讀者將學到:

- 如何避免常見的編程錯誤,例如緩衝區溢位、競爭條件和格式字符串問題
- 如何正確地為應用程序啟用 SSL
- 如何在不使用 SSL 的情況下為客戶端-伺服器通信創建安全通道
- 如何將公共密鑰基礎設施 (PKI) 集成到應用程序中
- 正確使用加密的最佳實踐
- 正確驗證程序輸入的技術和策略
- 如何安全地啟動程序
- 如何正確使用文件訪問機制
- 保護應用程序免受逆向工程的技術

本書的網站補充了書籍,提供了一個發布新食譜的地方,包括用 Perl、Java 和 Python 等其他語言編寫的食譜。每月將獎勵讀者提交的最佳食譜。

《C 和 C++ 安全編程食譜》注定將成為任何開發人員圖書館中不可或缺的一部分,開發人員將不斷參考這本代碼伴侶,以尋求保護他們的系統免受攻擊者的侵害,並減少他們在當今危險世界中面臨的風險。

類似商品