High Assurance Design
Architecting Secure and Reliable Enterprise Applications
Résumé
How to Design for Software Reliability, Security, and Maintainability
Many enterprises unfortunately depend on software that is insecure, unreliable, and fragile. They compensate by investing heavily in workarounds and maintenance, and by employing hordes of "gurus" to manage their systems' flaws. This must change. And it can. In this book, respected software architect Clifford J. Berg shows how to design high-assurance applications-applications with proven, built-in reliability, security, manageability, and maintainability.
High-Assurance Design presents basic design principles and patterns that can be used in any contemporary development environment and satisfy the business demand for agility, responsiveness, and low cost. Berg draws on real-world experience, focusing heavily on the activities and relationships associated with building superior software in a mainstream business environment. Practicing architects, lead designers, and technical managers will benefit from the coverage of the entire software lifecycle, showing how to:
- Understand and avoid the problems that lead to unreliable, insecure software
- Refocus design and development resources to improve software
- Identify project risks and plan for assurable designs
- Obtain the requirements needed to deliver high assurance
- Design application systems that meet the identified requirements
- Verify that the design satisfies these requirements
- Plan and design tests for reliability and security
- Integrate security design, reliability design, and application design into one coherent set of processes
- Incorporate these concerns into any software development methodology
L'auteur - Clifford J. Berg
is Vice President and Chief Technology Officer of
Digital Focus Inc. (www.digitalfocus.com), a leading
systems integrator for Internet-based and Java technologies
in Reston, VA. Berg was founding author of the popular
"Java Q&A" column in Dr. Dobb's Journal. He
consults to Fortune 500 companies around the world on Java
and the application of Internet technology to solve
business problems. Berg holds Master's degrees from Cornell
University in Operations Research and in Nuclear
Engineering and a B.S. in Physics from Cornell.
Sommaire
- Introduction
- Assurance Requirements
- Design Specification and Verification
- Planning for an Assurable Design
- Methods of Attack
- Realms of Trust
- Access Control Containers
- Compartmentalization and Classification
- Transport and Storage of Secrets
- Design Considerations for Secure Operation
- Compositional Integrity
- Concurrency
- Transactional Integrity
- Caching and Replication
- Distributed Services and Messaging
- Manageability
- Maintainability
- Failure Response Design
- Methodological Considerations
- Case Study: Transactional Integrity
- Case Study: Application Security
- Case Study: Manageability
- Appendix A: References
- Appendix B: Failure Response Conditions and Requirements
- Appendix C: List of Design Principles, by Chapter
- Appendix D: List of Design Patterns, Alphabetical
- Appendix E: List of Attack Patterns, by Section
Caractéristiques techniques
PAPIER | |
Éditeur(s) | Addison Wesley |
Auteur(s) | Clifford J. Berg |
Parution | 19/12/2005 |
Nb. de pages | 670 |
Format | 18 x 24,5 |
Couverture | Relié |
Poids | 1090g |
Intérieur | Noir et Blanc |
EAN13 | 9780321375773 |
ISBN13 | 978-0-321-37577-3 |
Avantages Eyrolles.com
Nos clients ont également acheté
Consultez aussi
- Les meilleures ventes en Graphisme & Photo
- Les meilleures ventes en Informatique
- Les meilleures ventes en Construction
- Les meilleures ventes en Entreprise & Droit
- Les meilleures ventes en Sciences
- Les meilleures ventes en Littérature
- Les meilleures ventes en Arts & Loisirs
- Les meilleures ventes en Vie pratique
- Les meilleures ventes en Voyage et Tourisme
- Les meilleures ventes en BD et Jeunesse