A PRACTICAL GUIDE TO WRITING SECURE APPLICATIONS, WITH HELP FROM YOUR FAVORITE JEDI MASTERS, SITH LORDS, AND DROIDS

Have you ever wondered what R2-D2, Darth Vader, Han Solo, or even Yoda could teach you about software security? Well, wonder no more.

In Threats: What Every Engineer Should Learn from Star Wars, veteran game designer and software engineer Adam Shostack delivers a fun and hands-on guide to developing secure software. The book is easy to read and immediately useful, demonstrating how to write more secure applications code with wisdom and insights from the Star Wars universe.

You’ll discover practical security models—like STRIDE—that are relevant to a wide variety of applications and systems. You’ll also learn ways that attackers use various strategies, like tampering, spoofing, and denial of service—to achieve their nefarious goals.

Modern application development has to account for security, usability, and rapid delivery. We can’t wait for “reviews” and interminable debates in the Galactic Senate. That’s what makes good security engineering so critical. Threats is an engaging and hilarious roadmap to writing secure apps from the ground up that you’ll actually want to read from cover to cover.

Secure your applications with help from your favorite Jedi masters

In Threats: What Every Engineer Should Learn From Star Wars, accomplished security expert and educator Adam Shostack delivers an easy-to-read and engaging discussion of security threats and how to develop secure systems. The book will prepare you to take on the Dark Side as you learn—in a structured and memorable way—about the threats to your systems. You’ll move from thinking of security issues as clever one-offs and learn to see the patterns they follow.

This book brings to light the burning questions software developers should be asking about securing systems, and answers them in a fun and entertaining way, incorporating cybersecurity lessons from the much-loved Star Wars series. You don’t need to be fluent in over 6 million forms of exploitation to face these threats with the steely calm of a Jedi master.

You’ll also find:

• Understandable and memorable introductions to the most important threats that every engineer should know
• Straightforward software security frameworks that will help engineers bake security directly into their systems
• Strategies to align large teams to achieve application security in today’s fast-moving and agile world
• Strategies attackers use, like tampering, to interfere with the integrity of applications and systems, and the kill chains that combine these threats into fully executed campaigns

An indispensable resource for software developers and security engineers, Threats: What Every Engineer Should Learn From Star Wars belongs on the bookshelves of everyone delivering or operating technology: from engineers to executives responsible for shipping secure code.