TY  - BOOK
AU  - Howard,Michael
AU  - LeBlanc,David
AU  - Viega,John
TI  - 19 deadly sins of software security: programming flaws and how to fix them 
SN  - 0072260858 [paperback]
PY  - 2005///
CY  - New York
PB  - McGraw-Hill/Osborne
KW  - Computer security
N1  - Includes bibliographical references and index; Contents: 1 Buffer overruns -- 2 Format string problems -- 3 Integer overflows -- 4 Sql injection -- 5 Command injection -- 6 Failing to handle errors -- 7 Cross-site scripting -- 8 Failing to protect network traffic -- 9 Use of magic urls and hidden form fields -- 10 Improper use of ssl and tls -- 11 Use of weak password-based systems -- 12 Failing to store and protect data securely -- 13 Information leakage -- 14 Improper file access -- 15 Trusting network name resolution -- 16 Race conditions -- 17 Unauthenticated key exchange -- 18 Cryptographically strong random numbers -- 19 Poor usability
UR  - http://www.loc.gov/catdir/enhancements/fy0645/2006274475-b.html
UR  - http://www.loc.gov/catdir/enhancements/fy0645/2006274475-d.html
ER  -