Software Security for Developers (MEAP 07)

Cloud applications have special security requirements and concerns. This book demonstrates effective real-world practices to keep your cloud and Kubernetes-deployed applications safe and sound.

In Software Security for Developers you will learn how to:

Configure industry standard security protocols correctly
Quickly debug errors and exceptions form security libraries
Utilize the developer-friendly Google Tink cryptography library
Work with X.509 digital certificates for implementing application security
Setup passwordless logins using the WebAuthentication protocol
Implement single sign on using OpenID Connect protocol
Establish authentication and authorization services using the Spring Authorization Server
Make use of popular secret storage solutions including HashiCorp Vault, AWS KMS, Google KMS, and Azure Key Vault
Use the security features of Kubernetes to secure deployed applications
Securely containerize application code

Software Security for Developers is a hands-on guide for working developers. It minimizes the abstract and complex security theory, instead focusing on the practices you need to secure applications running on Kubernetes and the cloud. In it, you’ll learn how to take advantage of pre-built security services in your daily development. Author Adib Saikali takes a developer-to-developer approach, sharing hard-won lessons from many years securing software in real-world environments. Easy-to-follow sample applications written in Java take you hands-on with security standards and protocols, turning complex concepts into practical solutions.