The advantage of using Rails is its agility; it makes developing your web applications easy and fast. The disadvantage is that it can leave holes in your security if you are not aware of common vulnerabilities. It's a nerve-wracking and unfortunate fact that there are plenty of malicious people lurking on the Web. As a Rails developer, it is essential that you understand how to assess risk and protect your data and your users.
Security on Rails uses established security principles to teach you how to write more secure software, defend your applications from common threats, and encrypt your data. We'll give you an example of a hacking exploit, and explore how to fix the weaknesses in an application.
You'll learn the steps you need to take to control access to information and authenticate users, including cryptography concepts and authorization. In addition, you'll see how to integrate your applications with external management systems; in short, the crucial details you must consider to protect yourself and your data.
The most important element of security is to plan for it before it becomes an issue. Security on Rails helps beginner and intermediate developers to take control of their applications and guard against attacks.
Security on Rails
- Authors
- Ben Poweski, David Raphael
- ISBN
- 1934356484
- Published
- 15 Dec 2009
- Purchase online
- amazon.com
The advantage of using Rails is its agility; it makes developing your web applications easy and fast. The disadvantage is that it can leave holes in your security if you are not aware of common vulnerabilities. It's a nerve-wracking and unfortunate fact that there are plenty of malicious people lurking on the Web. As a Rails developer, it is essential that you understand how to assess risk and protect your data and your users.
Editorial Reviews
You might also like...
Security tutorials
- What You Need to Know about PCI Compliance and Web Application Security Policy Changes
- Effective Controls for Attaining Continuous Application Security Throughout the Web Application Development Life Cycle
- Top 10 Application Security Vulnerabilities in Web.config Files - Part Two
- Testing for Security in the Age of Ajax Programming
Security books
-
CASP CompTIA Advanced Security Practitioner Study Guide: Exam CAS-001 (Comptia Study Guide)
Brand-new security certification insight from an industry expertTargeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study gui...
Security podcasts
-
IBM developerWorks: TWOdW: Save data energy and pull down old silos
Published 8 years ago, running time 0h2m
Last month, we highlighted a demo on how to integrate reverse-proxy WebSEAL (found in the IBM Security Access Manager solution) with the SAP NetWeaver Application Server ABAP. Now developerWorks has provided a wrapper of resources around the video to help you identify opportunities to learn more
Comments