"Developer's Guide to Web Application Security addresses security issues from the earliest stages of application development onward. The premise of the book is that there is too much at stake to wait for an audit (or worse, a customer) to find flaws or errors in your code. While acknowledging that there is no way to completely eliminate the risk of a malicious attack on your code, following the instructions and recommendations in this book should dramatically reduce both the likelihood of an attack as well as mitigate the extent of the damage should an attack occur. Specific tool coverage includes CGI Scripting, Java, XML, ActiveX and ColdFusion.
The early chapters of the book focus on Hackers different motives and the tools at their disposal. Next the book covers the inherent security risk associated with Mobile Code as it is delivered over the Internet. Remaining chapters provide detailed coverage of CGI Scripting, Java, XML, ActiveX and ColdFusion applications supported by numerous step-by-step coding examples."