Identity and Data Security for Web Development
Best Practices
Publisher: O'Reilly Media
Final Release Date: June 2016
Pages: 204

Developers, designers, engineers, and creators can no longer afford to pass responsibility for identity and data security onto others. Web developers who don’t understand how to obscure data in transmission, for instance, can open security flaws on a site without realizing it. With this practical guide, you’ll learn how and why everyone working on a system needs to ensure that users and data are protected.

Authors Jonathan LeBlanc and Tim Messerschmidt provide a deep dive into the concepts, technology, and programming methodologies necessary to build a secure interface for data and identity—without compromising usability. You’ll learn how to plug holes in existing systems, protect against viable attack vectors, and work in environments that sometimes are naturally insecure.

  • Understand the state of web and application security today
  • Design security password encryption, and combat password attack vectors
  • Create digital fingerprints to identify users through browser, device, and paired device detection
  • Build secure data transmission systems through OAuth and OpenID Connect
  • Use alternate methods of identification for a second factor of authentication
  • Harden your web applications against attack
  • Create a secure data transmission system using SSL/TLS, and synchronous and asynchronous cryptography
Table of Contents
Product Details
About the Author
Colophon
Recommended for You
Customer Reviews

REVIEW SNAPSHOT®

by PowerReviews
oreillyIdentity and Data Security for Web Development
 
3.5

(based on 2 reviews)

Ratings Distribution

  • 5 Stars

     

    (1)

  • 4 Stars

     

    (0)

  • 3 Stars

     

    (0)

  • 2 Stars

     

    (1)

  • 1 Stars

     

    (0)

Reviewed by 2 customers

Displaying reviews 1-2

Back to top

(1 of 1 customers found this review helpful)

 
5.0

Great introduction to security for web developers

By Oliver

from New York, NY

About Me Developer, Educator

Verified Reviewer

Pros

  • Accurate
  • Concise
  • Easy to understand
  • Helpful examples
  • Well-written

Cons

    Best Uses

    • Intermediate

    Comments about oreilly Identity and Data Security for Web Development:

    This is a great introduction and overview of security and identity best practices for web developers. It is clearly aimed at practicing developers over security experts and finds a good balance between practical examples and deeper explanations. After reading this title I have a much stronger understanding of security issues and will bring those into my day-to-day work.

    Bottom line: If more devs read this title, we'd have a more secure web.

    (1 of 7 customers found this review helpful)

     
    2.0

    Some interesting parts some not so

    By Security Seeker

    from Germany

    Verified Buyer

    Pros

    • Helpful examples

    Cons

    • Difficult to understand

    Best Uses

    • Novice

    Comments about oreilly Identity and Data Security for Web Development:

    while the book contains interesting and useful parts some things at least need some polishment, e.g. I find sentences such as "it might be wise to consider biometric factors less as a security mechanism and more as a mechanism in order to prove identity." a bit strange. Isn'T proving identity a security measure?

    It'S a early release though so things may improve until the final edition.

    Displaying reviews 1-2

    Back to top

     
    Buy 2 Get 1 Free Free Shipping Guarantee
    Buying Options
    Immediate Access - Go Digital what's this?
    Ebook:  $33.99
    Formats:  DAISY, ePub, Mobi, PDF
    Print & Ebook:  $43.99
    Print:  $39.99