Vincent Liu – författare

Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.

The latest Web app attacks and countermeasures from world-renowned practitioners

Protect your Web applications from malicious attacks by mastering the weapons and thought processes of today's hacker. Written by recognized security practitioners and thought leaders, Hacking Exposed Web Applications, Third Edition is fully updated to cover new infiltration methods and countermeasures. Find out how to reinforce authentication and authorization, plug holes in Firefox and IE, reinforce against injection attacks, and secure Web 2.0 features. Integrating security into the Web development lifecycle (SDL) and into the broader enterprise information security program is also covered in this comprehensive resource.

Get full details on the hacker's footprinting, scanning, and profiling tools, including SHODAN, Maltego, and OWASP DirBusterSee new exploits of popular platforms like Sun Java System Web Server and Oracle WebLogic in operationUnderstand how attackers defeat commonly used Web authentication technologiesSee how real-world session attacks leak sensitive data and how to fortify your applicationsLearn the most devastating methods used in today's hacks, including SQL injection, XSS, XSRF, phishing, and XML injection techniquesFind and fix vulnerabilities in ASP.NET, PHP, and J2EE execution environmentsSafety deploy XML, social networking, cloud computing, and Web 2.0 servicesDefend against RIA, Ajax, UGC, and browser-based, client-side exploitsImplement scalable threat modeling, code review, application scanning, fuzzing, and security testing procedures

Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.

Security Smarts for the Self-Guided IT Professional

“Get to know the hackers—or plan on getting hacked. Sullivan and Liu have created a savvy, essentials-based approach to web app security packed with immediately applicable tools for any information security practitioner sharpening his or her tools or just starting out.” —Ryan McGeehan, Security Manager, Facebook, Inc.

Secure web applications from today's most devious hackers. Web Application Security: A Beginner's Guide helps you stock your security toolkit, prevent common hacks, and defend quickly against malicious attacks.

This practical resource includes chapters on authentication, authorization, and session management, along with browser, database, and file security--all supported by true stories from industry. You'll also get best practices for vulnerability detection and secure development, as well as a chapter that covers essential security fundamentals. This book's templates, checklists, and examples are designed to help you get started right away.

Web Application Security: A Beginner's Guide features:

Lingo--Common security terms defined so that you're in the know on the jobIMHO--Frank and relevant opinions based on the authors' years of industry experienceBudget Note--Tips for getting security technologies and processes into your organization's budgetIn Actual Practice--Exceptions to the rules of security explained in real-world contextsYour Plan--Customizable checklists you can use on the job nowInto Action--Tips on how, why, and when to apply new skills and techniques at work

This book provides clinicians, clinicians-in-training and researchers with a unique rapid-access educational resource on the spectrum of issues at the intersection of skin and malignancy.

The International Conference on E-business Technology & Strategy (CETS) provides a peer-reviewed forum for researchers from across the globe to share contemporary research on developments in the fields of e-business, information technology and business strategy. It seeks to promote effective and vibrant networking among researchers and practitioners from around the world who are concerned about the effective management of information technology in organizations. This network of researchers views fostering the development of emerging scholars in the information technology and e-business fields as its primary task. Consequently the conference is designed to provide a venue for researchers to get substantive and beneficial feedback on their work. There were 134 contributions submitted to CETS 2010. After in-depth discussions, 29 high-quality contributions were selected for publication in this volume. The authors are from Canada, USA, China, Japan, India and Malaysia. We thank all the authors who submitted papers, the Program Committee members, and the external reviewers. We also thank all the local people who were instrumental in making this edition of CETS another very successful event. In particular, we are very grateful to Ying Xie, who was responsible for the local arrangements. Special gratitude goes to the publishing editor, Leonie Kunz, who managed the complexity of information and communication aspects. Furthermore, we thank the many students who volunteered on the organization team, as well as the IT services of Carleton University.