買這商品的人也買了...
-
精通 Linux 核心開發-設計與實作 Linux 核心的權威指南, 3/e (Linux Kernel Development, 3/e)$680$537 -
$1,512Don't Make Me Think, Revisited: A Common Sense Approach to Web Usability, 3/e (Paperback) -
行為改變科學的實務設計 | 活用心理學與行為經濟學 (Designing for Behavior Change: Applying Psychology and Behavioral Economics)$680$537 -
$1,584OAuth 2 in Action (Paperback) -
UX 從新手開始|使用者體驗的 100堂必修課 (UX for Beginners: A Crash Course in 100 Short Lessons)$480$379 -
Arduino 官方正版 Genuino 101$1,700$1,700 -
互動設計概論$520$468 -
Raspberry Pi 3 Model B+ (UK製)$4,620$4,389 -
產品路線圖|從革新到蛻變 (Product Roadmapping: Align Your Teams, and Deliver the Most to Your Customers and Stakeholders)$580$458 -
$407網站佈局與網頁配色設計 -
領域驅動設計:軟體核心複雜度的解決方法 (Domain-Driven Design: Tackling Complexity in the Heart of Software)$680$578 -
重構|改善既有程式的設計, 2/e (繁中平裝版)(Refactoring: Improving The Design of Existing Code, 2/e)$800$632 -
$1,452Deep Learning with JavaScript: Neural Networks in Tensorflow.Js -
有腦設計|運用腦科學打造好產品 (Design for How People Think: Using Brain Science to Build Better Products )$520$411 -
Kali Linux 滲透測試工具|花小錢做資安,你也是防駭高手, 3/e$880$695 -
$1,742Web Application Security: Exploitation and Countermeasures for Modern Web Applications -
原型設計|善用原型設計和使用者測試創造成功產品 (Prototyping for Designers)$580$458 -
$301Web 安全漏洞原理及實戰 -
CYBER2020 臺灣資安年鑑$199$179 -
神之手:動畫大神 加加美高浩的繪手神技$550$495 -
零信任網路|在不受信任的網路中建構安全系統 (Zero Trust Networks)$480$379 -
重新認識 Vue.js:008天絕對看不完的 Vue.js 3 指南$600$468 -
OAuth 2.0 從入門到實戰:利用驗證和授權守護 API 的安全$600$510 -
駭客就在你旁邊:內網安全攻防滲透你死我活, 2/e$880$695 -
OpenTelemetry 入門指南:建立全面可觀測性架構(iThome鐵人賽系列書)【軟精裝】$750$375
商品描述
Developers, designers, engineers, and creators can no longer afford to pass responsibility for identity and data security onto others. Web developers who don’t understand how to obscure data in transmission, for instance, can open security flaws on a site without realizing it. With this practical guide, you’ll learn how and why everyone working on a system needs to ensure that users and data are protected.
Authors Jonathan LeBlanc and Tim Messerschmidt provide a deep dive into the concepts, technology, and programming methodologies necessary to build a secure interface for data and identity—without compromising usability. You’ll learn how to plug holes in existing systems, protect against viable attack vectors, and work in environments that sometimes are naturally insecure.
- Understand the state of web and application security today
- Design security password encryption, and combat password attack vectors
- Create digital fingerprints to identify users through browser, device, and paired device detection
- Build secure data transmission systems through OAuth and OpenID Connect
- Use alternate methods of identification for a second factor of authentication
- Harden your web applications against attack
- Create a secure data transmission system using SSL/TLS, and synchronous and asynchronous cryptography
商品描述(中文翻譯)
開發者、設計師、工程師和創作者再也無法將身份和數據安全的責任推給他人。例如,對於不理解如何在傳輸中隱藏數據的網頁開發者來說,可能會在不知情的情況下在網站上打開安全漏洞。通過這本實用指南,您將學習到為什麼每一位在系統上工作的人都需要確保用戶和數據的安全。
作者 Jonathan LeBlanc 和 Tim Messerschmidt 深入探討了構建安全數據和身份介面的概念、技術和編程方法,並且不會妥協可用性。您將學習如何修補現有系統中的漏洞,防範可行的攻擊向量,並在有時本身就不安全的環境中工作。
- 了解當前網頁和應用程序安全的狀態
- 設計安全的密碼加密,並對抗密碼攻擊向量
- 創建數字指紋,通過瀏覽器、設備和配對設備檢測來識別用戶
- 通過 OAuth 和 OpenID Connect 構建安全的數據傳輸系統
- 使用替代的身份識別方法作為第二因素的身份驗證
- 加固您的網頁應用程序以抵禦攻擊
- 使用 SSL/TLS 以及同步和非同步加密創建安全的數據傳輸系統
