Threats

A PRACTICAL GUIDE TO WRITING SECURE APPLICATIONS, WITH HELP FROM YOUR FAVORITE JEDI MASTERS, SITH LORDS, AND DROIDS Have you ever wondered what R2-D2, Darth Vader, Han Solo, or even Yoda could teach you about software security? Well, wonder no more. In Threats: What Every Engineer Should Learn from Star Wars, veteran game designer and software engineer Adam Shostack delivers a fun and hands-on guide to developing secure software. The book is easy to read and immediately useful, demonstrating how to write more secure applications code with wisdom and insights from the Star Wars universe. You’ll discover practical security models—like STRIDE—that are relevant to a wide variety of applications and systems. You’ll also learn ways that attackers use various strategies, like tampering, spoofing, and denial of service—to achieve their nefarious goals. Modern application development has to account for security, usability, and rapid delivery. We can’t wait for “reviews” and interminable debates in the Galactic Senate. That’s what makes good security engineering so critical. Threats is an engaging and hilarious roadmap to writing secure apps from the ground up that you’ll actually want to read from cover to cover. Secure your applications with help from your favorite Jedi masters In Threats: What Every Engineer Should Learn From Star Wars, accomplished security expert and educator Adam Shostack delivers an easy-to-read and engaging discussion of security threats and how to develop secure systems. The book will prepare you to take on the Dark Side as you learn—in a structured and memorable way—about the threats to your systems. You’ll move from thinking of security issues as clever one-offs and learn to see the patterns they follow. This book brings to light the burning questions software developers should be asking about securing systems, and answers them in a fun and entertaining way, incorporating cybersecurity lessons from the much-loved Star Wars series. You don’t need to be fluent in over 6 million forms of exploitation to face these threats with the steely calm of a Jedi master. You’ll also find: * Understandable and memorable introductions to the most important threats that every engineer should know * Straightforward software security frameworks that will help engineers bake security directly into their systems * Strategies to align large teams to achieve application security in today’s fast-moving and agile world * Strategies attackers use, like tampering, to interfere with the integrity of applications and systems, and the kill chains that combine these threats into fully executed campaigns An indispensable resource for software developers and security engineers, Threats: What Every Engineer Should Learn From Star Wars belongs on the bookshelves of everyone delivering or operating technology: from engineers to executives responsible for shipping secure code. ADAM SHOSTACK is a technologist, entrepreneur, and game designer. One of the world’s leading experts on threat modeling, he wrote Threat Modeling: Designing for Security and is an Affiliate Professor at the University of Washington. He is a member of the BlackHat Review Board and the founder of Shostack + Associates, a specialized security consultancy dedicated to helping organizations deliver secure systems. Preface xi Introduction xv 1 Spoofing and Authenticity 1 2 Tampering and Integrity 41 3 Repudiation and Proof 63 4 Information Disclosure and Confidentiality 95 5 Denial of Service and Availability 131 6 Expansion of Authority and Isolation 151 7 Predictability and Randomness 187 8 Parsing and Corruption 211 9 Kill Chains 249 Epilogue 291 Glossary 295 Bibliography 303 Story Index 317 Index 323