| 000 | 04893cam a2200493 i 4500 | ||
|---|---|---|---|
| 999 |
_c868 _d868 |
||
| 001 | 18182959 | ||
| 003 | OSt | ||
| 005 | 20220213090601.0 | ||
| 008 | 140610s2015 flua b 001 0 eng | ||
| 010 | _a 2014022587 | ||
| 020 |
_a9781466592612 _qpaperback |
||
| 020 |
_a9781138436848 _qhardback |
||
| 040 |
_aDLC _beng _cDLC _erda _dEG-CaTKH |
||
| 042 | _apcc | ||
| 050 | 0 | 0 |
_aTK5105.59 _b.W822 2015 |
| 082 | 0 | 0 |
_a005.8 WU.W 2015 _223 |
| 100 | 1 |
_aWu, Hanqing, _eauthor. |
|
| 245 | 1 | 0 |
_aWeb security : _ba WhiteHat perspective / _cHanqing Wu and Liz Zhao. |
| 264 | 1 |
_aBoca Raton, FL : _bCRC Press is an imprint of Taylor & Francis, _c2015. |
|
| 264 | 1 |
_aBeijing, China : _bPublishing House of Electronics Industry, _c2015. |
|
| 300 |
_axxiii, 508 pages : _billustrations ; _c26 cm. |
||
| 336 |
_atext _btxt _2rdacontent |
||
| 337 |
_aunmediated _bn _2rdamedia |
||
| 338 |
_avolume _bnc _2rdacarrier |
||
| 500 | _a"First issued in hardback 2017"--title page verso. | ||
| 504 | _aIncludes bibliographical references and index. | ||
| 505 | 0 | _aSection 1. Our view of the security world -- View of the IT security world -- Section 2. Safetyon the client script -- Security of browser -- Cross-site scripting attack -- Cross-site request forgery -- Clickjacking -- Section 3. Application on the server side -- HTML5 securities -- Injection attacks -- File upload vulnerability -- Authentication and session management -- Access control -- Encryption algorithm and random numbers -- Web framework security -- Application-layer denial-of-service attacks -- PHP security -- Web server configuration security -- Section 4. Safety operations of internet companies. -- Security of Internet business -- Security development lifecycle -- Security operations | |
| 520 |
_a"This book introduces nearly all aspects of web security. It reveals how hackers work and explains why companies of different scale should choose their own methodology of security. With in depth analysis of the reasons behind the choices, the book covers client script security, server applications security, and Internet company security operations. It also includes coverage of browser security, cross sites script attacks, click jacking, HTML5/PHP security, injection attacks, authentication, session management, access control, web frame security, DDOS, leaks, Internet transactions security, security development lifecycle, and security operations. "-- _cProvided by publisher. |
||
| 520 |
_a"Preface In mid-2010, Zhang Chunyu asked me if I could write a book on cloud computing. While the concept of cloud computing is very popular, there is not enough written material on how to handle this. Though I have kept myself up to date with this technology, I declined Zhang's request as the prospects in the field were not clear and instead wrote this book on web security. My Road of Security My interest in security developed when I was a student, after I got a book on hacking with no ISBN from the black market. The book had a teaching course on coolfire, which intrigued me. Ever since, I have been hooked to hacking and have taken much interest in practicing the techniques covered in these types of books. In 2000, I joined Xi'an Jiaotong University. Fortunately for me, the computer room at the university was open even after school hours. Though the price of online browsing was high, I invested most of my living expenses in the computer room. In return, I was gaining more knowledge in this field. With the momentum gained at university, I soon got my first computer with the help of my parents. This only helped to increase my interest in the field. In a short while, I collaborated with my friends to set up a technical organization called ph4nt0m.org, named after my favorite comic character. Though the organization did not last long, it helped groom top talents through communication forums that it initiated. This was the proudest achievement in the 20 years of my life. Due to the openness of the Internet and the advances in technology, I have witnessed nearly all the developments in Internet security in the last decade. During the first five years, I witnessed the technology in penetrating tests, cache overflow, and web hacking; for the next five years"-- _cProvided by publisher. |
||
| 650 | 0 |
_aComputer networks _xSecurity measures _vPopular works. |
|
| 650 | 0 | _aComputer security. | |
| 650 | 0 |
_aInternet _xSecurity measures. |
|
| 650 | 0 |
_aWorld Wide Web _xSecurity measures. |
|
| 700 | 1 |
_aZhao, Liz, _eauthor. |
|
| 942 |
_2ddc _cBK |
||
| 998 |
_ahuda.mahmoud _bM _d2022029 |
||
| 998 |
_amona.romia _bR _d20220213 |
||
| 856 | 4 | 2 | _3Cover image |
| 906 |
_a7 _bcbc _corignew _d1 _eecip _f20 _gy-gencatlg |
||