Testing Web Security

Testing Web Security: Assessing the Security of Web Sites and Applications

Author:
- Splaine, Steven
Subject:

Computer Communications & Networking
Published by:

John Wiley & Sons Inc (US)
Published:

11/10/2002
Price:

$82.99
< Buy this book >

Covers security basics and guides reader through the process of testing a Web site.
Explains how to analyze results and design specialized follow-up tests that focus on potential security gaps.
Teaches the process of discovery, scanning, analyzing, verifying results of specialized tests, and fixing vulnerabilities.

Biography

STEVEN SPLAINE is a chartered software engineer with more than twenty years of experience in project management, software testing, and product development. He is a regular speaker at software testing conferences and lead author of The Web Testing Handbook.

Acknowledgments.

Foreword.

Preface.

PART ONE: AN INTRODUCTION TO THE BOOK.

Introduction.

PART TWO: PLANNING THE TESTING EFFORT.

Test Planning.

PART THREE: TEST DESIGN.

Network Security.

System Software Security.

Client-Side Application Security.

Server-Side Application Security.

Sneak Attacks: Guarding Against the Less-Thought-of Security Threats.

Intruder Confusion, Detection, and Response.

PART FOUR: TEST IMPLEMENTATION.

Assessment and Penetration Options.

Risk Analysis.

Epilogue.

PART FIVE: APPENDIXES.

Appendix A: An Overview of Network Protocols, Addresses, and Devices.

Appendix B: SANS Institute Top 20 Critical Internet Security Vulnerabilities.

Appendix C: Test-Deliverable Templates.

Additional Rsources.

Index.

Most Read
Most Commented

Get exclusive access to Invitation only events CIO, reports & analysis.

Latest Jobs

FTTest Manager - IMMEDIATE STARTNSW
FTLead Software EngineerSA
FTOS Web Applications DeveloperNSW
FTSenior Field Engineer - MSNSW
FTQuality ManagerSA
FTSenior E-Commerce PHP Developer- North Sydney- E-commerce Software $110kNSW
FTSnr Web Developer PHP/Magento/API integration into E-commerce sites. $100k+SuperNSW
FT.NET - Sitecore Developer - Melbourne - PermNSW
FTSenior Python Web Applications DeveloperNSW
FTSenior Python DeveloperNSW
FTSenior Python DeveloperNSW
FTWeb Developer- Drupal and PHP. Exciting new position- #2 in Dev team.$100k+SuperNSW
FTSenior Projects EngineerNSW
FTTechnical Account Manager - MSP + CloudVIC
FTR&D EngineerSA

Zones

Featured Whitepapers

How Web Security Improves Productivity and Compliance

In this white paper, we will look at how secure web gateways, one type of information security technology, can provide benefits to many departments within any business or government agency. ...

Recent comments

"Too little too late. Spice normally has better standards than this. I ..."
Spiceworks' free management software gets integrated MDM
"Hi there! I just want to offer you a huge thumbs up ..."
Opinion: Why national e-health is not for everyone
"Hey there, You've done an incredible job. I'll definitely digg it and ..."
Opinion: Why national e-health is not for everyone
"Green tea is another natural product that can help burn calories and ..."
Opinion: Why national e-health is not for everyone
"The article posted was very educational and useful. You people are doing ..."
Opinion: Why national e-health is not for everyone

Follow CIO

Market Place

Now out of the office never means out of the loop. Office 365 – your complete office in the cloud.

Switch on The Symantec Business Critical Virtualisation Content Zone

Australian Breakfast Road Show: Enabling Proactive Security for Tomorrow's Business Trends

Deploying mobility worthwhile challenge hear what CIOs have to say.. Read more

Latest Jobs

Subscribe to CIO

Critical. Authoritative. Strategic. CIO magazine addresses the issues vital to the success of IT and business executives. Solutions-oriented editorial provides a greater understanding of the role IT plays in achieving corporate goals. Subscribe to the print edition today.

Download OPML file for import with all IDG RSS feeds

CSO Online Data Security Briefing