on 4 November 2004
"Secure code" is probably *the* book that should be purchased by managers in IT companies and provided (a gift?) to software developers all over the world. That would probably cut the number of security vulnerabilities found both in commercial and in-house code by a large number, and would also help all of us by making the digital world we "live" in more secure.
Not only does the book provide guidelines for developing code but it also helps developers think about the consequences of seemingly unimportant mistakes by using multiple examples derived from the authors' experience (some of which are actually quite entertaining). The checklists provided within can be, at the same time, inmediately useful for many developers who are currently working on big or small software projects.
Definitely worth a read.