By John Viega
Password sniffing, spoofing, buffer overflows, and denial of provider: those are just the various assaults on modern desktops and networks. on the root of this epidemic is poorly written, poorly verified, and insecure code that places each person in danger. essentially, modern day builders need assistance understanding tips to write code that attackers can not take advantage of. yet writing such code is strangely difficult.
Secure Programming Cookbook for C and C++ is a crucial new source for builders eager about writing safe code. It features a wealth of options to difficulties confronted by way of those that care concerning the safeguard in their purposes. It covers a variety of themes, together with secure initialization, entry keep an eye on, enter validation, symmetric and public key cryptography, cryptographic hashes and MACs, authentication and key trade, PKI, random numbers, and anti-tampering. the wealthy set of code samples supplied within the book's greater than 2 hundred recipes may also help programmers safe the C and C++ courses they write for either Unix® (including Linux®) and home windows® environments. Readers will learn:
- How to prevent universal programming blunders, corresponding to buffer overflows, race stipulations, and structure string problems
- How to correctly SSL-enable applications
- How to create safe channels for client-server communique with out SSL
- How to combine Public Key Infrastructure (PKI) into applications
- Best practices for utilizing cryptography properly
- Techniques and techniques for correctly validating enter to programs
- How to release courses securely
- How to take advantage of dossier entry mechanisms properly
- Techniques for shielding functions from opposite engineering
The book's website vitamins the ebook by means of offering a spot to submit new recipes, together with these written in more languages like Perl, Java, and Python. per 30 days prizes will present the easiest recipes submitted by way of readers.
Secure Programming Cookbook for C and C++ is destined to develop into a necessary a part of any developer's library, a code spouse builders will flip to many times as they search to guard their structures from attackers and decrease the hazards they face in state-of-the-art risky world.