Secure and Resilient Software Development

by Mark S. Merkow, Lakshmikanth Raghavan

Although many software books highlight open problems in secure software development, few provide easily actionable, ground-level solutions. Breaking the mold, Secure and Resilient Software Development teaches you how to apply best practices and standards for consistent and secure software development. It details specific quality software development strategies and practices that stress resilience requirements with precise, actionable, and ground-level inputs. Providing comprehensive coverage, the book illustrates all phases of the secure software development life cycle. It shows developers how to master non-functional requirements including reliability, security, and resilience. The authors provide expert-level guidance through all phases of the process and supply many best practices, principles, testing practices, and design methodologies. For updates to this book and ongoing activities of interest to the secure and resilient software community, please www.srsdlc.com " Secure and Resilient Software Development provides a strong foundation for anyone getting started in application security. Most application security books fall into two business-oriented and vague or ridiculously super technical. Mark and Laksh draw on their extensive experience to bridge this gap effectively. The book consistently links important technical concepts back to the business reasons for application security with interesting stories about real companies dealing with application security issues ." ―Jeff Williams, Chair, The OWASP Foundation

404 pages, Hardcover

First published June 16, 2010