Hi all, I am the editor of the Addison-Wesley Software Security Series. It includes the Chess/West book "Secure Programming with Static Analysis" as well as a bunch of other books. You can learn about the series here: http://www.buildingsecurityin.com/
Or on Amazon (though this list is missing "Building Secure Software"): http://www.amazon.com/gp/series/93344/ref=pd_serl_books?ie=UTF8&edition=paperback I am always on the lookout for new books for the series. In particular, I would like to see some good books created on software security testing, software security requirements, abuse/misuse cases, architectural risk analysis, and possibly even penetration testing. Who wants to write a book for Addison-Wesley? Together with SEI/CERT, a new book in the series is almost ready for release. See more about "Software Security Engineering" here: http://www.amazon.com/Software-Security-Engineering-Project-Managers/dp/032150917X/ref=sr_1_1?ie=UTF8&s=books&qid=1205180964&sr=1-1 gem company www.cigital.com podcast www.cigital.com/silverbullet blog www.cigital.com/justiceleague book www.swsec.com On 3/8/08 6:29 AM, "Sebastien Deleersnyder" <[EMAIL PROTECTED]> wrote: There is a list on http://www.owasp.org/index.php/Education_Module_Good_WebAppSec_Resources I am currently reading a "Secure Programming with Statical Analysi" which I like. Regards Seba -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jim Manico Sent: vrijdag 7 maart 2008 16:40 To: Lawson, David L Cc: sc-l@securecoding.org Subject: Re: [SC-L] Secure Coding Books "How to break web software" is one of the best web security coder- centric books I have read. Its concise and useful. Sent from my iPhone On Mar 7, 2008, at 7:45 AM, "Lawson, David L" <[EMAIL PROTECTED]> wrote: > I've read several secure coding books in the past, and was wondering > if > anyone has recommendations for secure coding books (preferably from > the > last year or two). > > Thanks, > > David Lawson > _______________________________________________ > Secure Coding mailing list (SC-L) SC-L@securecoding.org > List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l > List charter available at - http://www.securecoding.org/list/charter.php > SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com > ) > as a free, non-commercial service to the software security community. > _______________________________________________ _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________ -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.516 / Virus Database: 269.21.6/1317 - Release Date: 7/03/2008 8:15 _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________ _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________