Secure Coding: Principles & Practices
Welcome to the on-line home of Secure Coding:
Principles and Practices (O'Reilly, 2003). We provide
here information about the book and its authors; updated
versions of links and tables that appear in the book; and
also original supplemental material like op/ed pieces and vulnerability
analyses. It's all offered in the spirit of
helping us build strong and light "virtual bridges" in
the years to come.
Recent News and Articles
20 April 2004
- Secure Coding:
Principles & Practices has been translated
to Japanese by O'Reilly Japan
details can be found here
09 April 2004
- Ken and Sean analyze
a recently discovered
buffer overflow vulnerability in a popular
media player for Unix and discuss it's
16 February 2004
- An RSS feed
of the Secure Coding
mailing list (SC-L) has been made available
"This is a very important book. Most of today's security
problems are caused by a combination of design flaws, poor programming
standards, and programmer error. Programmers, architects, and managers need
to read this book and apply it in their day-to-day work."
--- Simson L. Garfinkel, coauthor, Practical Unix and Internet Security, and
founder, Sandstorm Enterprises, Inc.
Visit the Advance
Praise section to read other pre-release accolades
that the book has received.