Home Page Icon
Home Page
Table of Contents for
PART I Primer
Close
PART I Primer
by Vincent Liu, Bryan Sullivan
Web Application Security
Title Page
Copyright Page
Dedication
About the Authors
Contents at a Glance
Contents
Acknowledgments
Introduction
PART I Primer
CHAPTER 1 Welcome to the Wide World of Web Application Security
Misplaced Priorities and the Need for a New Focus
Network Security versus Application Security: The Parable of the Wizard and the Magic Fruit Trees
Thinking like a Defender
The OWASP Top Ten List
Secure Features, Not Just Security Features
Final Thoughts
CHAPTER 2 Security Fundamentals
Input Validation
Attack Surface Reduction
Classifying and Prioritizing Threats
PART II Web Application Security Principles
CHAPTER 3 Authentication
Access Control Overview
Authentication Fundamentals
Two-Factor and Three-Factor Authentication
Web Application Authentication
Securing Password-Based Authentication
Secure Authentication Best Practices
CHAPTER 4 Authorization
Access Control Continued
Session Management Fundamentals
Securing Web Application Session Management
Defining the Same-Origin Policy
Exceptions to the Same-Origin Policy
Final Thoughts on the Same-Origin Policy
Cross-Site Scripting
Cross-Site Request Forgery
CHAPTER 7 Database Security Principles
Structured Query Language (SQL) Injection
Setting Database Permissions
Insecure Direct Object References
CHAPTER 8 File Security Principles
Keeping Your Source Code Secret
Security Through Obscurity
Forceful Browsing
Directory Traversal
PART III Secure Development and Deployment
CHAPTER 9 Secure Development Methodologies
Baking Security In
The Holistic Approach to Application Security
Industry Standard Secure Development Methodologies and Maturity Models
EPILOGUE The Wizard, the Giant, and the Magic Fruit Trees: A Happy Ending
Index
Search in book...
Toggle Font Controls
Playlists
Add To
Create new playlist
Name your new playlist
Playlist description (optional)
Cancel
Create playlist
Sign In
Email address
Password
Forgot Password?
Create account
Login
or
Continue with Facebook
Continue with Google
Sign Up
Full Name
Email address
Confirm Email Address
Password
Login
Create account
or
Continue with Facebook
Continue with Google
Prev
Previous Chapter
Introduction
Next
Next Chapter
CHAPTER 1 Welcome to the Wide World of Web Application Security
PART I
Primer
Add Highlight
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click
here
login for view all page.
Day Mode
Cloud Mode
Night Mode
Reset