McGraw-Hill Professional values your privacy. By registering for the AccessEngineering Free Trial you agree to allow McGraw-Hill Professional to contact you through mail and email regarding special offers and new products. Please read our Privacy Notice to see how the information you have provided will be used. You can also write to: Privacy Officer, McGraw-Hill Professional, 1221 Avenue of the Americas, 46th Floor, New York, NY 10020. No purchase is necessary to take advantage of this offer. McGraw-Hill Professional reserves the right to discontinue the AccessEngineering Free Trial at any time with no advance notification.
FAILURE TO PROTECT STORED DATAFAILURE TO PROTECT STORED DATAOVERVIEW OF THE SINSensitive data must be protected when the data is at rest. In many cases, it’s the law! We touched on a variant of this issue in Sin 12, which dealt mostly with accidental leakage of data through application error messages and various side-channels. This chapter will look mostly at how to protect data at rest so that it cannot be accessed, accidentally or maliciously, by other than author…
Michael Howard; David LeBlanc; John Viega: 24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them. FAILURE TO PROTECT STORED DATA, Chapter
(McGraw-Hill Professional, 2010), AccessEngineering