DevSecOps for .NET Core : Securing Modern Software Applications /: Securing Modern Software Applications. (2020)
- Record Type:
- Book
- Title:
- DevSecOps for .NET Core : Securing Modern Software Applications /: Securing Modern Software Applications. (2020)
- Main Title:
- DevSecOps for .NET Core : Securing Modern Software Applications
- Further Information:
- Note: Afzaal Ahmad Zeeshan.
- Authors:
- Zeeshan, Afzaal Ahmad
- Contents:
- Chapter 1: Modern Software EngineeringChapter Goal: This chapter will outline the modern software engineering principles and introduce DevOps as well as requirements and responsibilities of a software engineering team to publish quality software. No of pages 20 Sub -Topics 1. Software Design 2. Solutions on the Internet 3. Multicultural Customers 4. Changing Market 5. Security and Compliance Requirements Chapter 2: DevOps with Security Chapter Goal: This is a practical topic and discusses DevOps pipelines as a mode of automation for software production and outlines important tasks in DevOps where automation can inject security principles to improve product quality. No of pages: 20-25 Sub - Topics 1. DevOps in a Nutshell 2. Securing Software 3. Quality Assurance 4. Pre-commit testing 5. HTTP vs SSH Chapter 3: Writing Secure Code Chapter Goal: This chapter discusses the development phase of DevOps pipeline and outlines how to improve software quality and decrease friction in later stages by preventing known vulnerabilities and code flaws before hand. During this chapter we will explore code issues such as SQL Injection prevention, Cross-site scripting, and other similar issues. No of pages : 45 Sub - Topics: 1. Write Less, Write Secure 2. Developer Training 3. Runtime Selection and Configuration 4. Microservices: Separation of Concerns 5. Authentication in Services Chapter 4: Automating Everything as Code Chapter Goal: We discuss the steps necessary to make security,Chapter 1: Modern Software EngineeringChapter Goal: This chapter will outline the modern software engineering principles and introduce DevOps as well as requirements and responsibilities of a software engineering team to publish quality software. No of pages 20 Sub -Topics 1. Software Design 2. Solutions on the Internet 3. Multicultural Customers 4. Changing Market 5. Security and Compliance Requirements Chapter 2: DevOps with Security Chapter Goal: This is a practical topic and discusses DevOps pipelines as a mode of automation for software production and outlines important tasks in DevOps where automation can inject security principles to improve product quality. No of pages: 20-25 Sub - Topics 1. DevOps in a Nutshell 2. Securing Software 3. Quality Assurance 4. Pre-commit testing 5. HTTP vs SSH Chapter 3: Writing Secure Code Chapter Goal: This chapter discusses the development phase of DevOps pipeline and outlines how to improve software quality and decrease friction in later stages by preventing known vulnerabilities and code flaws before hand. During this chapter we will explore code issues such as SQL Injection prevention, Cross-site scripting, and other similar issues. No of pages : 45 Sub - Topics: 1. Write Less, Write Secure 2. Developer Training 3. Runtime Selection and Configuration 4. Microservices: Separation of Concerns 5. Authentication in Services Chapter 4: Automating Everything as Code Chapter Goal: We discuss the steps necessary to make security, compliance, audit, and UX automated to decrease decoupling and friction in the departments, and introduce key factors that help improve build and hosting environments, which will be discussed in detail in later chapter. No of pages:40-45 Sub - Topics: 1. Version Control and Audit 2. Hosted Code Storage 3. Infrastructure as Code 4. Automating Security 5. Compliance and Policies 6. Risk and Bugs Analysis Chapter 5: Securing Build Systems for DevOps Chapter Goal: In this chapter we demonstrate the CI phase of DevOps and utilize our build systems; hosted and on-premises, to apply security and compliance checks throughout the task, we apply code analysis methods to verify quality of product and discusses different approaches to host package archives for deployment. No of pages: 45 1. On-Premises vs Hosted CI/CD 2. Code Analysis Methods 3. Archive Caching and Hashing 4. Automated Deployments Chapter 6: Automating Production Environments for Quality Chapter Goal: This chapter focuses on production hosting environments and their security, such as container and host platform security, network ports scanning, firewall and application gateways to prevent unauthorized access. We also explore how to extract sensitive information out of source code and configuration files using external services to improve privacy. No of pages: 40 1. Host Platforms 2. Docker and Containers 3. Network Security 4. Configuration and Credentials 5. System Failure and Post-mortems 6. Infrastructure Rollbacks Chapter 7: Compliance and Security Chapter Goal: This chapter enlists international standards and their requirements by a software product, such as GDPR, and how teams can tackle these in their products using automated audits. No of pages: 15 1. Audit 2. GDPR Requirements 3. DevOps Audit Toolkit 4. Automated Issue Tracking. … (more)
- Publisher Details:
- Berkeley, CA : Apress
- Publication Date:
- 2020
- Copyright Date:
- 2020
- Extent:
- 1 online resource (284 pages)
- Subjects:
- Computer science
Microsoft software
Microsoft .NET Framework
Data protection
Computers -- Security -- General
Computer security
Computers -- Programming -- Microsoft Programming
Microsoft programming - Languages:
- English
- ISBNs:
- 9781484258507
- Related ISBNs:
- 9781484258491
- Access Rights:
- Legal Deposit; Only available on premises controlled by the deposit library and to one user at any one time; The Legal Deposit Libraries (Non-Print Works) Regulations (UK).
- Access Usage:
- Restricted: Printing from this resource is governed by The Legal Deposit Libraries (Non-Print Works) Regulations (UK) and UK copyright law currently in force.
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library HMNTS - ELD.DS.506292
- Ingest File:
- 03_081.xml