Chapter 9
Secure coding
After completing this chapter, you will be able to:
Understand the fundamental rules of writing secure code.
Write defensive code that can withstand attack.
Understand common insecure coding issues and how to fix them.
Implement some effective security testing techniques.
Insecure code
Too much code written today is insecure. It’s not because developers are lazy; it’s often because developers simply don’t know what constitutes secure code. But this is where it gets interesting. Most of the time, an insecure system works correctly and passes all functional tests. So why don’t testers find security issues? There is a reason, and it lies in this statement:
“A secure system is a system that does what it is supposed to ...
Get Designing and Developing Secure Azure Solutions now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
