Application security in the ISO 27001:2013 environment / / Vinod Vasudevan [and five others]
(Visualizza in formato marc)
(Visualizza in BIBFRAME)
| Autore: |
Vasudevan Vinod
|
| Titolo: |
Application security in the ISO 27001:2013 environment / / Vinod Vasudevan [and five others]
|
| Pubblicazione: | Ely Cambridgeshire : , : IT Governance Publishing, , 2015 |
| Edizione: | Second edition. |
| Descrizione fisica: | 1 online resource (254 pages) : illustrations |
| Disciplina: | 005.8 |
| Soggetto topico: | Data protection - Standards |
| Computer security | |
| Computer networks - Security measures - Standards | |
| Information technology - Standards | |
| Computer software - Reliability | |
| Nota di bibliografia: | Includes bibliographical references. |
| Nota di contenuto: | Cover; Title; Copyright; Preface; About The Authors; Acknowledgements; Contents; Chapter 1: Introduction To The International Information Security Standards Iso27001 And Iso27002; Chapter 2: The Iso27001 Implementation Project; Chapter 3: Risk Assessment; Chapter 4: Introduction To Application Security Theats; Chapter 5: Application Security And Iso27001; Chapter 6: Attacks On Applications; Chapter 7: Secure Development Lifecycle; Chapter 8: Threat Profiling And Security Testing; Chapter 9: Secure Coding Guidelines; Itg Resources. |
| Sommario/riassunto: | This book explains how organisations can implement and maintain effective security practices to protect their web applications and the servers on which they reside as part of a wider information security management system by following the guidance set out in the international standard for information security management, ISO27001. Methods used by criminal hackers to attack organisations via their web applications and a detailed explanation of how you can combat such attacks by employing the guidance and controls set out in ISO27001 are provided. This edition is updated to reflect ISO27001:2013 as well as best practices relating to cryptography, including the PCI SSC's denigration of SSL in favour of TLS. -- Edited summary from book. |
| Titolo autorizzato: | Application security in the ISO 27001:2013 environment |
| Formato: | Materiale a stampa  |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione: | Inglese |
| Record Nr.: | 9910798238503321 |
| Lo trovi qui: | Univ. Federico II |
| Opac: | Controlla la disponibilità qui |