What is included with this book?
Christopher Wells has deployed security solutions for major healthcare, telecommunication, and financial industries, and is currently employed as an Information Security Consultant for a major financial institution. He is an accomplished applications security architect with over 10 years of application security experience. Christopher holds multiple security certifications including a Certified Information Security Systems Professional (CISSP), and holds a Bachelor degree from the University of Minnesota.
Preface | p. ix |
The Evolving Web | p. 1 |
The Rise of the Web | p. 2 |
Web Security | p. 29 |
Security Basics | p. 29 |
Risk Analysis | p. 37 |
Common Web Application Vulnerabilities | p. 40 |
Securing Web Technologies | p. 56 |
How Web Sites Communicate | p. 56 |
Browser Security | p. 61 |
Browser Plug-ins, Extensions, and Add-ons | p. 76 |
Protecting the Server | p. 99 |
Network Security | p. 100 |
Host Security | p. 103 |
Web Server Hardening | p. 121 |
Application Server Hardening | p. 128 |
A Weak Foundation | p. 130 |
HTTP Vulnerabilities | p. 131 |
The Threats | p. 136 |
JSON | p. 143 |
XML | p. 146 |
RSS | p. 148 |
Atom | p. 149 |
REST | p. 152 |
Securing Web Services | p. 155 |
Web Services Overview | p. 156 |
Security and Web Services | p. 167 |
Web Service Security | p. 172 |
Building Secure APIs | p. 174 |
Building Your Own APIs | p. 174 |
Preconditions | p. 179 |
Postconditions | p. 180 |
Invariants | p. 180 |
Security Concerns | p. 181 |
RESTful Web Services | p. 183 |
Mashups | p. 190 |
Web Applications and Open Internet APIs | p. 191 |
Wild Web 2.0 | p. 192 |
Mashups and Security | p. 194 |
Open Versus Secure | p. 198 |
A Security Blanket | p. 199 |
Case Studies | p. 201 |
Index | p. 213 |
Table of Contents provided by Ingram. All Rights Reserved. |
The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.
The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.