Rating:
Author:
ISBN : B006IED8MO
New from $18.58
Format: PDF, EPUB
Free download Free Official (ISC)2 Guide to the CSSLP ((ISC)2 Press) [Kindle Edition] for everyone book with Mediafire Link Download LinkAs the global leader in information security education and certification, (ISC) 2® has a proven track record of educating and certifying information security professionals. Its newest certification, the Certified Secure Software Lifecycle Professional (CSSLP ® ) is a testament to the organization’s ongoing commitment to information and software security. The Official (ISC) 2® Guide to the CSSLP ® provides an all-inclusive analysis of the CSSLP Common Body of Knowledge (CBK ® ). As the first comprehensive guide to the CSSLP CBK, it facilitates the required understanding of the seven CSSLP domains—Secure Software Concepts, Secure Software Requirements, Secure Software Design, Secure Software Implementation/Coding, Secure Software Testing, Software Acceptance, and Software Deployment, Operations, Maintenance and Disposal—to assist candidates for certification and beyond. Serves as the only official guide to the CSSLP professional certification Details the software security activities that need to be incorporated throughout the software development lifecycle Provides comprehensive coverage that includes the people, processes, and technology components of software, networks, and host defenses Supplies a pragmatic approach to implementing software assurances in the real-world The text allows readers to learn about software security from a renowned security practitioner who is the appointed software assurance advisor for (ISC) 2 . Complete with numerous illustrations, it makes complex security concepts easy to understand and implement. In addition to being a valuable resource for those studying for the CSSLP examination, this book is also an indispensable software security reference for those already part of the certified elite. A robust and comprehensive appendix makes this book a time-saving resource for anyone involved in secure software development.Direct download links available for Free Official 2 Guide to the CSSLP 2 Press)
- File Size: 6402 KB
- Print Length: 572 pages
- Publisher: CRC Press; 1 edition (November 28, 2011)
- Sold by: Amazon Digital Services, Inc.
- Language: English
- ASIN: B006IED8MO
- Text-to-Speech: Enabled
X-Ray:
- Lending: Not Enabled
- Amazon Best Sellers Rank: #576,432 Paid in Kindle Store (See Top 100 Paid in Kindle Store)
Free Official 2 Guide to the CSSLP 2 Press)
To begin with, in my opinion this book is a good source for understanding the fundamentals of Secure Software Development. It is written in a very understandable way such that I believe that security professionals, developers, software architects, as well as IT managers could profit from reading it. The book, which comes to my regret without CD, is structured as follows (i.e., CSSLP domains):
1. Secure Software Concepts
Good explanation of standards, best practices, methodologies, and frameworks. Regulations and Trusted Computing Base (TCB) are very much like in the CISSP books.
2. Secure Software Requirements
Again good description of Authentication and Protection Needs Elicitation (PNE). Authorization is the same as for CISSP.
3. Secure Software Design
Threat Modeling, architecture, and technologies are very well laid out.
4. Secure Software Implementation
Development methodologies, vulnerabilities, and defensive techniques are thoroughly discussed. The complete list of OWASP vulnerabilities is shown and possible counter measures proposed. Personally, chapters 3 and 4 are the ones I appreciated the most in this book.
5. Secure Software Testing
Testing methods are listed in detail. Good part.
6. Software Acceptance
This chapter is mainly about Change Management and Intellectual Property Rights in all its flavours (again, the latter reminded me of CISSP CBK).
7. Software Deployment
Subjects like installation, maintenance, incident and problem management, and disposal are well addressed (parts of this content can be found in CISSP literature).
-
Download Link 2