Secure and Resilient Software: Requirements, Test Cases, and Testing Methods (Hardcover)

Mark S. Merkow, Lakshmikanth Raghavan

商品描述

Secure and Resilient Software: Requirements, Test Cases, and Testing Methods provides a comprehensive set of requirements for secure and resilient software development and operation. It supplies documented test cases for those requirements as well as best practices for testing nonfunctional requirements for improved information assurance. This resource-rich book includes:

 

 

 

  • Pre-developed nonfunctional requirements that can be reused for any software development project
  • Documented test cases that go along with the requirements and can be used to develop a Test Plan for the software
  • Testing methods that can be applied to the test cases provided
  • A CD with all security requirements and test cases as well as MS Word versions of the checklists, requirements, and test cases covered in the book

 

Offering ground-level, already-developed software nonfunctional requirements and corresponding test cases and methods, this book will help to ensure that your software meets its nonfunctional requirements for security and resilience. The accompanying CD filled with helpful checklists and reusable documentation provides you with the tools needed to integrate security into the requirements analysis, design, and testing phases of your software development lifecycle.

Some Praise for the Book:

This book pulls together the state of the art in thinking about this important issue in a holistic way with several examples. It takes you through the entire lifecycle from conception to implementation ... .
—Doug Cavit, Chief Security Strategist, Microsoft Corporation

 

...provides the reader with the tools necessary to jump-start and mature security within the software development lifecycle (SDLC).
—Jeff Weekes, Sr. Security Architect at Terra Verde Services

... full of useful insights and practical advice from two authors who have lived this process. What you get is a tactical application security roadmap that cuts through the noise and is immediately applicable to your projects.
—Jeff Williams, Aspect Security CEO and Volunteer Chair of the OWASP Foundation

商品描述(中文翻譯)

《安全且具彈性的軟體:需求、測試案例和測試方法》提供了一套全面的安全且具彈性的軟體開發和運營需求。它提供了這些需求的文件化測試案例,以及測試非功能性需求以提高信息保護的最佳實踐。這本資源豐富的書籍包括:

- 可重複使用於任何軟體開發項目的預先開發的非功能性需求
- 隨需求一起提供的文件化測試案例,可用於為軟體開發制定測試計劃
- 可應用於提供的測試案例的測試方法
- 一張光碟,包含所有安全需求和測試案例,以及書中涵蓋的清單、需求和測試案例的 MS Word 版本

這本書提供了已開發的軟體非功能性需求、相應的測試案例和方法,有助於確保您的軟體滿足其安全和彈性的非功能性需求。附帶的光碟提供了有用的清單和可重複使用的文件,為您在軟體開發生命週期的需求分析、設計和測試階段中整合安全所需的工具。

對於這本書的一些讚譽:

「這本書以整體的方式整合了這個重要問題的最新思考,並提供了幾個例子。它從概念到實施帶領您穿越整個生命週期...。」
- Doug Cavit,微軟公司首席安全策略師

「...為讀者提供了在軟體開發生命週期(SDLC)中啟動和成熟安全所需的工具。」
- Jeff Weekes,Terra Verde Services高級安全架構師

「...充滿了來自兩位曾經經歷過這個過程的作者的有用見解和實用建議。您將獲得一個切實可行的應用安全路線圖,它能消除噪音並立即應用於您的項目。」
- Jeff Williams,Aspect Security首席執行官兼OWASP基金會志願主席