Identity and Data Security for Web Development: Best Practices
$9.99
Price: $9.99
(as of Nov 19, 2024 17:24:56 UTC – Details)
Developers, designers, engineers, and creators can no longer afford to pass responsibility for identity and data security onto others. Web developers who don’t understand how to obscure data in transmission, for instance, can open security flaws on a site without realizing it. With this practical guide, you’ll learn how and why everyone working on a system needs to ensure that users and data are protected.
Authors Jonathan LeBlanc and Tim Messerschmidt provide a deep dive into the concepts, technology, and programming methodologies necessary to build a secure interface for data and identity—without compromising usability. You’ll learn how to plug holes in existing systems, protect against viable attack vectors, and work in environments that sometimes are naturally insecure.
Understand the state of web and application security todayDesign security password encryption, and combat password attack vectorsCreate digital fingerprints to identify users through browser, device, and paired device detectionBuild secure data transmission systems through OAuth and OpenID ConnectUse alternate methods of identification for a second factor of authenticationHarden your web applications against attackCreate a secure data transmission system using SSL/TLS, and synchronous and asynchronous cryptography
ASIN : B01GP09AS6
Publisher : O’Reilly Media; 1st edition (June 6, 2016)
Publication date : June 6, 2016
Language : English
File size : 5534 KB
Simultaneous device usage : Unlimited
Text-to-Speech : Enabled
Enhanced typesetting : Enabled
X-Ray : Not Enabled
Word Wise : Not Enabled
Print length : 291 pages
6 reviews for Identity and Data Security for Web Development: Best Practices
Add a review
You must be logged in to post a review.
IReport –
This is one of the finest books i have read in Security
This is one of the finest books i have read in Security. It gives details on some of the best security principles every major industries must follow to achieve data protection and user authentication/authorization for their web applications. I am a security professional so I could finish this book in a few days but for a first timer or new to the world of security this will be a great book to get an idea on how things work in enterprises.
S. KRAMER –
Good book reviews security concepts, history and approaches
Book goes thru various security concepts, history and approaches, has javaScript/Node.JS/NPM code for reference. If your looking for a good detailed overview of web security for web development, then this is the boo for you.
Roger Fischer –
Not what I expected
Not what I expected. The book is more of an example for implementing OAuth and OpenID Connect with Node and Express. If you are looking for an in-depth explanation of OAuth or OpenId, then this is the wrong book.The book starts with a very high level overview of security concepts. This is rather basic, and most of it I already knew (and I am not a security expert).Then it has a closer look at OAuth and OpenID Connect. But the explanation is just 5 pages, and one page is a diagram. The diagram is worse than the one you find in Wikipedia (there should be 3 actors). The rest is mostly code (which I was not interested in).At that point I stopped reading, as it wasn’t what I was looking for.
Rajdeep Roy –
The book has major points covered related to data security practices for the developers. When you writing you need to be aware of the measures that needs to be taken in order to have a control over your security. The length of the book is small but with satisfied content.
Koushik –
Good one, but mostly I recommend this to Developers.
Sonia Gentile –
Il libro è sicuramente per addetti ai lavori, ma potrebbe essere letto da chiunque, scorre velocemente ed è sempre corredato da esempi, gli argomenti sono divisi in maniera ottimale.