Title
The Tangled Web: A Guide To Securing Modern Web Applications
Sold by Ergodebooks, an authorized reseller.
Returns accepted within 30 days | support@ergodebooks.com
Shipping Information
- Free Standard Shipping — United States only
- Processing Time: 1–3 business days
- Estimated Delivery: 3–5 business days after dispatch
- Double-boxed, fully insured & discreetly packaged
- Tracking number sent via email once dispatched
- Orders over $250 require signature upon delivery. Taxes calculated at checkout.
Returns & Refund
Returns accepted within 30 days of delivery.
Damaged or Defective Item
Free return shipping + replacement or full refund
Wrong Item Received
Free return shipping + replacement or full refund
Change of Mind
Return shipping at customer's expense · 25% restocking fee applies
Payment Option
Thorough And Comprehensive Coverage From One Of The Foremost Experts In Browser Security.Tavis Ormandy, Google Inc.Modern Web Applications Are Built On A Tangle Of Technologies That Have Been Developed Over Time And Then Haphazardly Pieced Together. Every Piece Of The Web Application Stack, From Http Requests To Browserside Scripts, Comes With Important Yet Subtle Security Consequences. To Keep Users Safe, It Is Essential For Developers To Confidently Navigate This Landscape.In The Tangled Web, Michal Zalewski, One Of The World'S Top Browser Security Experts, Offers A Compelling Narrative That Explains Exactly How Browsers Work And Why They'Re Fundamentally Insecure. Rather Than Dispense Simplistic Advice On Vulnerabilities, Zalewski Examines The Entire Browser Security Model, Revealing Weak Points And Providing Crucial Information For Shoring Up Web Application Security. You'Ll Learn How To:Perform Common But Surprisingly Complex Tasks Such As Url Parsing And Html Sanitization Use Modern Security Features Like Strict Transport Security, Content Security Policy, And Crossorigin Resource Sharing Leverage Many Variants Of The Sameorigin Policy To Safely Compartmentalize Complex Web Applications And Protect User Credentials In Case Of Xss Bugs Build Mashups And Embed Gadgets Without Getting Stung By The Tricky Frame Navigation Policy Embed Or Host Usersupplied Content Without Running Into The Trap Of Content Sniffing For Quick Reference, Security Engineering Cheat Sheets At The End Of Each Chapter Offer Ready Solutions To Problems You'Re Most Likely To Encounter. With Coverage Extending As Far As Planned Html5 Features, The Tangled Web Will Help You Create Secure Web Applications That Stand The Test Of Time.
⚠️ WARNING (California Proposition 65):
This product may contain chemicals known to the State of California to cause cancer, birth defects, or other reproductive harm.
For more information, please visit www.P65Warnings.ca.gov.
- Q: How many pages does the book have? A: The book has three hundred twenty pages. It provides comprehensive coverage of web application security.
- Q: What is the size of the book? A: The book measures six point nine four inches in length, zero point seven six inches in width, and nine point two five inches in height. This makes it portable and easy to handle.
- Q: What type of binding does the book have? A: The book is paperback bound. This type of binding is lightweight and flexible, making it suitable for casual reading.
- Q: Who is the author of the book? A: The author is Michal Zalewski. He is recognized as one of the foremost experts in browser security.
- Q: What topics does the book cover? A: The book covers web application security, including browser vulnerabilities and security models. It also discusses modern security features and practices.
- Q: Is this book suitable for beginners? A: Yes, the book is suitable for beginners and professionals alike. It explains complex security topics in an accessible manner.
- Q: How can I use the information in this book? A: You can use the information to enhance your understanding of web security. It provides practical advice and solutions for developers.
- Q: Is this book appropriate for young readers? A: No, this book is not specifically designed for young readers. It targets developers and professionals interested in web security.
- Q: Do I need prior knowledge to understand this book? A: Some prior knowledge of web development concepts may be helpful. However, the book is written to be informative for a wide audience.
- Q: How should I care for this book? A: To keep the book in good condition, store it in a dry place and avoid exposure to direct sunlight. Handling it with clean hands will help maintain its quality.
- Q: What is the return policy for this book? A: The return policy typically allows returns within thirty days if the book is in its original condition. Always check the specific retailer's policy for details.
- Q: What if my book arrives damaged? A: If your book arrives damaged, you should contact the seller for a replacement or refund. Most retailers have customer service to assist with issues.
- Q: Can I find this book in libraries? A: Yes, many libraries may carry this book due to its educational value in web security. You can check your local library's catalog.
- Q: Is this book available in digital format? A: Yes, the book is often available in digital formats. Check online retailers for eBook options.
- Q: Are there any companion resources for this book? A: Yes, the book includes 'Security Engineering Cheat Sheets' for quick reference. These aid in applying the concepts discussed.
- Q: What genre does this book belong to? A: The book belongs to the genre of technology and computer security. It provides insights into modern web application security practices.