Practical Core Software Security, Ransome, James F.
Автор: David A. Patterson , John L. Hennessy Название: Computer Organization and Design RISC-V Edition ISBN: 0128203315 ISBN-13(EAN): 9780128203316 Издательство: Elsevier Science Рейтинг: Цена: 88690.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: Computer Organization and Design RISC-V Edition: The Hardware Software Interface, Second Edition, the award-winning textbook from Patterson and Hennessy that is used by more than 40,000 students per year, continues to present the most comprehensive and readable introduction to this core computer science topic. This version of the book features the RISC-V open source instruction set architecture, the first open source architecture designed for use in modern computing environments such as cloud computing, mobile devices, and other embedded systems. Readers will enjoy an online companion website that provides advanced content for further study, appendices, glossary, references, links to software tools, and more.
Автор: Merkow Mark S. Название: Practical Security for Agile and DevOps ISBN: 103215120X ISBN-13(EAN): 9781032151205 Издательство: Taylor&Francis Рейтинг: Цена: 65320.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: This text offers college students in Information Security Programs an accessible and practical guide on securing software development practices, regardless of which development methodology is used. It is written with a contemporary view on securing all types of software development practices or methodologies.
Автор: Ransome James, Misra Anmol Название: Core Software Security: Security at the Source ISBN: 103202741X ISBN-13(EAN): 9781032027418 Издательство: Taylor&Francis Рейтинг: Цена: 47970.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание:
"... an engaging book that will empower readers in both large and small software development and engineering organizations to build security into their products. ... Readers are armed with firm solutions for the fight against cyber threats." -Dr. Dena Haritos Tsamitis. Carnegie Mellon University
"... a must read for security specialists, software developers and software engineers. ... should be part of every security professional's library." -Dr. Larry Ponemon, Ponemon Institute "... the definitive how-to guide for software security professionals. Dr. Ransome, Anmol Misra, and Brook Schoenfield deftly outline the procedures and policies needed to integrate real security into the software development process. ...A must-have for anyone on the front lines of the Cyber War ..." -Cedric Leighton, Colonel, USAF (Ret.), Cedric Leighton Associates "Dr. Ransome, Anmol Misra, and Brook Schoenfield give you a magic formula in this book - the methodology and process to build security into the entire software development life cycle so that the software is secured at the source! " -Eric S. Yuan, Zoom Video Communications There is much publicity regarding network security, but the real cyber Achilles' heel is insecure software. Millions of software vulnerabilities create a cyber house of cards, in which we conduct our digital lives. In response, security people build ever more elaborate cyber fortresses to protect this vulnerable software. Despite their efforts, cyber fortifications consistently fail to protect our digital treasures. Why? The security industry has failed to engage fully with the creative, innovative people who write software. Core Software Security expounds developer-centric software security, a holistic process to engage creativity for security. As long as software is developed by humans, it requires the human element to fix it. Developer-centric security is not only feasible but also cost effective and operationally relevant. The methodology builds security into software development, which lies at the heart of our cyber infrastructure. Whatever development method is employed, software must be secured at the source.
Book Highlights:
Supplies a practitioner's view of the SDL
Considers Agile as a security enabler
Covers the privacy elements in an SDL
Outlines a holistic business-savvy SDL framework that includes people, process, and technology
Highlights the key success factors, deliverables, and metrics for each phase of the SDL
Examines cost efficiencies, optimized performance, and organizational structure of a developer-centric software security program and PSIRT
Includes a chapter by noted security architect Brook Schoenfield who shares his insights and experiences in applying the book's SDL framework
View the authors' website at http: //www.androidinsecurity.com/
Автор: Ransome, James Название: Core Software Security ISBN: 1466560959 ISBN-13(EAN): 9781466560956 Издательство: Taylor&Francis Рейтинг: Цена: 132710.00 T Наличие на складе: Есть у поставщика Поставка под заказ.
Автор: Das, Ravindra, Название: The science of biometrics : ISBN: 1498761240 ISBN-13(EAN): 9781498761246 Издательство: Taylor&Francis Рейтинг: Цена: 57150.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: The Science of Biometrics covers technical aspects of iris and facial recognition, focusing primarily on mathematical and statistical algorithms that run the verification and identification processes in these modalities.
Автор: Tevfik Bultan; Fang Yu; Muath Alkhalaf; Abdulbaki Название: String Analysis for Software Verification and Security ISBN: 3319686682 ISBN-13(EAN): 9783319686684 Издательство: Springer Рейтинг: Цена: 79190.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание:
This book discusses automated string-analysis techniques, focusing particularly on automata-based static string analysis. It covers the following topics: automata-bases string analysis, computing pre and post-conditions of basic string operations using automata, symbolic representation of automata, forward and backward string analysis using symbolic automata representation, constraint-based string analysis, string constraint solvers, relational string analysis, vulnerability detection using string analysis, string abstractions, differential string analysis, and automated sanitization synthesis using string analysis.
String manipulation is a crucial part of modern software systems; for example, it is used extensively in input validation and sanitization and in dynamic code and query generation. The goal of string-analysis techniques and this book is to determine the set of values that string expressions can take during program execution. String analysis can be used to solve many problems in modern software systems that relate to string manipulation, such as: (1) Identifying security vulnerabilities by checking if a security sensitive function can receive an input string that contains an exploit; (2) Identifying possible behaviors of a program by identifying possible values for dynamically generated code; (3) Identifying html generation errors by computing the html code generated by web applications; (4) Identifying the set of queries that are sent to back-end database by analyzing the code that generates the SQL queries; (5) Patching input validation and sanitization functions by automatically synthesizing repairs illustrated in this book.
Like many other program-analysis problems, it is not possible to solve the string analysis problem precisely (i.e., it is not possible to precisely determine the set of string values that can reach a program point). However, one can compute over- or under-approximations of possible string values. If the approximations are precise enough, they can enable developers to demonstrate existence or absence of bugs in string manipulating code. String analysis has been an active research area in the last decade, resulting in a wide variety of string-analysis techniques.
This book will primarily target researchers and professionals working in computer security, software verification, formal methods, software engineering and program analysis. Advanced level students or instructors teaching or studying courses in computer security, software verification or program analysis will find this book useful as a secondary text.
Автор: Huang, Dijiang Chowdhary, Ankur Pisharody, Sandeep Название: Software-defined networking and security ISBN: 036778064X ISBN-13(EAN): 9780367780647 Издательство: Taylor&Francis Рейтинг: Цена: 50010.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: This book seeks to educate the reader regarding Cyber Maneuver or Adaptive Cyber Defense.
Автор: Rierson Название: Developing Safety-Critical Software ISBN: 143981368X ISBN-13(EAN): 9781439813683 Издательство: Taylor&Francis Рейтинг: Цена: 86760.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: The amount of software used in safety-critical systems is increasing at a rapid rate. At the same time, software technology is changing, projects are pressed to develop software faster and more cheaply, and the software is being used in more critical ways. Developing Safety-Critical Software: A Practical Guide for Aviation Software and DO-178C Compliance equips you with the information you need to effectively and efficiently develop safety-critical, life-critical, and mission-critical software for aviation. The principles also apply to software for automotive, medical, nuclear, and other safety-critical domains. An international authority on safety-critical software, the author helped write DO-178C and the U.S. Federal Aviation Administration’s policy and guidance on safety-critical software. In this book, she draws on more than 20 years of experience as a certification authority, an avionics manufacturer, an aircraft integrator, and a software developer to present best practices, real-world examples, and concrete recommendations. The book includes: An overview of how software fits into the systems and safety processes Detailed examination of DO-178C and how to effectively apply the guidance Insight into the DO-178C-related documents on tool qualification (DO-330), model-based development (DO-331), object-oriented technology (DO-332), and formal methods (DO-333) Practical tips for the successful development of safety-critical software and certification Insightful coverage of some of the more challenging topics in safety-critical software development and verification, including real-time operating systems, partitioning, configuration data, software reuse, previously developed software, reverse engineering, and outsourcing and offshoring An invaluable reference for systems and software managers, developers, and quality assurance personnel, this book provides a wealth of information to help you develop, manage, and approve safety-critical software more confidently.
Автор: Ricardo Choren; Alessandro Garcia; Carlos Lucena; Название: Software Engineering for Multi-Agent Systems III ISBN: 3540248439 ISBN-13(EAN): 9783540248439 Издательство: Springer Рейтинг: Цена: 65210.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: Presents a survey of advances in software engineering approaches to the design and analysis of realistic large-scale multi-agent systems (MAS). This book contains chapters that are devoted to various techniques and methods used to cope with the complexity of real-world MAS. It illustrates the power of agent-based software engineering.
Автор: Alessandro Garcia; Ricardo Choren; Carlos Lucena; Название: Software Engineering for Multi-Agent Systems IV ISBN: 3540335803 ISBN-13(EAN): 9783540335801 Издательство: Springer Рейтинг: Цена: 60550.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: Presents a survey of the advances in software engineering approaches to the design and analysis of realistic large-scale multi-agent systems (MAS). This book includes chapters that are devoted to various techniques and methods used to cope with the complexity of real-world MAS.
Автор: Ricardo Choren; Alessandro Garcia; Carlos Lucena; Название: Software Engineering for Multi-Agent Systems V ISBN: 354073130X ISBN-13(EAN): 9783540731306 Издательство: Springer Рейтинг: Цена: 60550.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: Describes experiences and techniques associated with large multi-agent systems in a wide variety of problem domains. This book covers topics such as fault tolerance, exception handling and diagnosis, security and trust, verification and validation, as well as early development phases and software reuse.
Автор: Manuel Carro; Ricardo Pe?a Название: Practical Aspects of Declarative Languages ISBN: 3642115020 ISBN-13(EAN): 9783642115028 Издательство: Springer Рейтинг: Цена: 69870.00 T Наличие на складе: Есть у поставщика Поставка под заказ. Описание: This book constitutes the refereed proceedings of the 12th International Symposium on Practical Aspects of Declarative Languages, PADL 2010, held in Madrid, Spain, in January 2010, colocated with POPL 2010, the Symposium on Principles of Programming Languages.
Казахстан, 010000 г. Астана, проспект Туран 43/5, НП2 (офис 2) ТОО "Логобук" Тел:+7 707 857-29-98 ,+7(7172) 65-23-70 www.logobook.kz
