Information science Secure software design and development process

Product description ※Please note that product information is not in full comprehensive meaning because of the machine translation.

Informatics The author, with more than 20 years of experience as an engineer on the security team at Microsoft and Google, shares his experience with software developers. Written for a wide range of software developers, it shows how to incorporate security from the early software design stage and involve the entire team in the process of security.
Biography of author
It is known in May 1978 in MIT's S. B. (BSCSE) paper describing practical methods for applying public key cryptography to secure network communications. The paper introduces the terms "certificates" and "certificate-revocation lists" and also introduces a number of concepts that are now established as key elements of public key cryptography. It builds on this paper the X. 509 certification specifications, which form the basis modern PKI implementations, including SSL, S/MIME, and others. It also builds on this paper the STRIDE model of security threats, which is widely used for threat modeling. It has been developed with Praerit Garg.