Alice and Bob Learn Application Security
Impossible d'ajouter des articles
Échec de l’élimination de la liste d'envies.
Impossible de suivre le podcast
Impossible de ne plus suivre le podcast
Acheter pour 18,85 €
Aucun moyen de paiement n'est renseigné par défaut.
Désolés ! Le mode de paiement sélectionné n'est pas autorisé pour cette vente.
-
Lu par :
-
Tanya Janca
-
De :
-
Tanya Janca
À propos de cette écoute
Learn application security from the very start with this comprehensive and approachable guide!
Alice and Bob Learn Application Security is an accessible and thorough resource for anyone seeking to incorporate, from the beginning of the System Development Life Cycle, best security practices in software development. This book covers all the basic subjects such as threat modeling and security testing, but also dives deep into more complex and advanced topics for securing modern software systems and architectures. Throughout, the book offers analogies, stories of the characters Alice and Bob, real-life examples, technical explanations and diagrams to ensure maximum clarity of the many abstract and complicated subjects. Topics include: secure requirements, design, coding, and deployment; security testing (all forms); common pitfalls; application security programs; securing modern applications; and software developer security hygiene.
Alice and Bob Learn Application Security is perfect for aspiring application security engineers and practicing software developers, as well as software project managers, penetration testers, and chief information security officers who seek to build or improve their application security programs.
PLEASE NOTE: When you purchase this title, the accompanying PDF will be available in your Audible Library along with the audio.
©2021 John Wiley & Sons, Inc. (P)2021 Gildan MediaVous êtes membre Amazon Prime ?
Bénéficiez automatiquement de 2 livres audio offerts.Bonne écoute !
Ce que les auditeurs disent de Alice and Bob Learn Application Security
Moyenne des évaluations utilisateurs. Seuls les utilisateurs ayant écouté le titre peuvent laisser une évaluation.Commentaires - Veuillez sélectionner les onglets ci-dessous pour changer la provenance des commentaires.
-
Global
-
Interprétation
-
Histoire
- mikus
- 21/09/2021
Very basic, repetitive, poorly read
The book can be useful for high level managers and people with little understanding of technology, but claiming that it's meant for 'practicing software developers' is a huge overstatement.
Most of the content is extremly basic and any programmer should know it already, with some of the examples being almost childish. On top of that the book is repetitive to annoying level, You're going to hear at least 100 times that you should validate input and never deploy software without prior testing, as if the author assumed that the reader is not capable of memorizing basic concepts.
Then it comes the reading - it feels almost as if the book was read by Siri, and even if you speed up the playback, you're going to frantically smash the 'skip' button whenever Tanya starts spelling URLs and code examples. Yeah, she really does it, she does it slow, and makes sure you won't miss any special character.
So do I think it's completely useless? NO! The general concept of the book is good - most of us are going to pick up at least several details that may end up useful and worth further reading or at least inspire to adapt some internal processes.
I also like that many of the recommendations are based in reality and not asking for impossible effort, as many purely theorethical positions do. The book is also fairly up to date, which means it covers some of the topics that may be new for those not keeping up with the latest developmnets.
Overall, that would be a very good 30min read if presented in a concise and organized leaflet. In the current form, if you're technical, you need to decide if you're willing to suffer for 10h just to fish some interesting details, although be warned, keeping focused won't be easy. Consider skipping the first chapter, or several of them.
Une erreur s'est produite. Réessayez dans quelques minutes.
Merci. Votre vote a été pris en compte.
Vous avez donné votre avis sur cette évaluation !