About the Book :
What every programmer needs to know about security, illustrated with running examples of web applications and stories of whats gone wrong in the past. This book takes a principles approach to helping you design and implement your applications to be secure from the ground-up and illustrates these principles using running examples of web applications throughout the book. This book does not just focus on merely teaching you tips and tricks that allow you to band aid the security of your systems. Instead, it illustrates how security principles can be employed to prevent some of the most significant, current-day attack types, such as cross-site scripting (XSS) and SQL injection as well as more traditional attack types such as buffer overflows.