Beginning where the best-selling book Building Secure Software left off, Software Security teaches you how to put software security into practice. The software security best practices, or touchpoints, descripts on this book have their basis in good software engineering and involve explicitly pondering security throughout the software development lifecycle. This means knowing and understanding common risks (including implementation bugs and architectural flaws), designing for security, and subjecting all software artifacts to thorough, objective risk analyses and testing.
Part 1: Software Security Fundamentals
Chapter 1: Defining a Discipline
Chapter 2: A Risk Management Framework
Part 2: Seven Youchpoints for Software Security
Chapter 3: Introduction Touchpoints
Chapter 4: Code Review with a Tool
Chapter 5: Architectural Risk Analysis
Chapter 6: Software Penetration Testing
Chapter 7: Risk-Based Security Testing
Chapter 8: Abuse Cases
Chapter 9: Software Security Meets-Security Operations
Part 3: Software Security Grows Up
Chapter 10: An Enterprise Softrware Security Program
,etc.