02981nam 2200529 450 991079823850332120200520144314.0(CKB)3710000000612110(MiAaPQ)EBC4395800(NjHacI)993710000000612110(Au-PeEL)EBL4395800(CaPaEBR)ebr11155271(OCoLC)941700561(EXLCZ)99371000000061211020160315d2015 uy| 0engur|||||||||||txtrdacontentcrdamediacrrdacarrierApplication security in the ISO 27001:2013 environment /Vinod Vasudevan [and five others]Second edition.Ely Cambridgeshire :IT Governance Publishing,2015.1 online resource (254 pages) illustrations1-84928-767-8 Includes bibliographical references.Cover; Title; Copyright; Preface; About The Authors; Acknowledgements; Contents; Chapter 1: Introduction To The International Information Security Standards Iso27001 And Iso27002; Chapter 2: The Iso27001 Implementation Project; Chapter 3: Risk Assessment; Chapter 4: Introduction To Application Security Theats; Chapter 5: Application Security And Iso27001; Chapter 6: Attacks On Applications; Chapter 7: Secure Development Lifecycle; Chapter 8: Threat Profiling And Security Testing; Chapter 9: Secure Coding Guidelines; Itg Resources.This book explains how organisations can implement and maintain effective security practices to protect their web applications and the servers on which they reside as part of a wider information security management system by following the guidance set out in the international standard for information security management, ISO27001. Methods used by criminal hackers to attack organisations via their web applications and a detailed explanation of how you can combat such attacks by employing the guidance and controls set out in ISO27001 are provided. This edition is updated to reflect ISO27001:2013 as well as best practices relating to cryptography, including the PCI SSC's denigration of SSL in favour of TLS. -- Edited summary from book.Data protectionStandardsComputer securityComputer networksSecurity measuresStandardsInformation technologyStandardsComputer softwareReliabilityData protectionStandards.Computer security.Computer networksSecurity measuresStandards.Information technologyStandards.Computer softwareReliability.005.8Vasudevan Vinod1553960MiAaPQMiAaPQMiAaPQBOOK9910798238503321Application security in the ISO 27001:2013 environment3814851UNINA