I have completed the review of the book “Secure and Resilient Software Development” for IACR (International Association for Cryptologic Research) book review program.

The review can be summarized as follows:

This book is a “must read” resource for security experts focusing on application security and for application designers and developers who need to integrate security into their systems. It provides various aspects of application security for each phase of software development. The authors have practical experience in application security and wrote a practice-oriented book. The chapters are well-structured and arranged in a good logical order. I would strongly recommend this book to security architects, security trainers, application designers and developers. But I would not recommend the book for students who might have less security and development knowledge due to missing real-life project experience. The broad content of the book could be quite complicated for students to follow.

You can download the review from the Publications section as well.

I have recently completed the review of the book “Architecting Secure Software Systems” for IACR (International Association for Cryptologic Research) book review program.

The review can be summarized as follows:

This book focuses on both theoretical and practical aspects of designing secure software systems. While its theory part is quite well-written, its practical part is not well-structured. I would strongly recommend it to people who need to get only an overview of secure software design, but not for security experts who want to study a specific topic in detail.

You can download the review from the Publications section as well.

I will now continue reviewing the book “Secure and Resilient Software Development” as the next one.