Listen free for 30 days

  • Alice and Bob Learn Application Security

  • Written by: Tanya Janca
  • Narrated by: Tanya Janca
  • Length: 10 hrs and 42 mins

1 credit a month, good for any title to download and keep.
The Plus Catalogue—listen all you want to thousands of Audible Originals, podcasts, and audiobooks.
$14.95 a month plus applicable taxes after 30 day trial. Cancel anytime.
Alice and Bob Learn Application Security cover art

Alice and Bob Learn Application Security

Written by: Tanya Janca
Narrated by: Tanya Janca
Try for $0.00

$14.95 a month after 30 days. Cancel anytime.

Buy Now for $26.30

Buy Now for $26.30

Pay using card ending in
By confirming your purchase, you agree to Audible's Conditions of Use and Amazon's Privacy Notice. Tax where applicable.

Publisher's Summary

Learn application security from the very start with this comprehensive and approachable guide!

Alice and Bob Learn Application Security is an accessible and thorough resource for anyone seeking to incorporate, from the beginning of the System Development Life Cycle, best security practices in software development. This book covers all the basic subjects such as threat modeling and security testing, but also dives deep into more complex and advanced topics for securing modern software systems and architectures. Throughout, the book offers analogies, stories of the characters Alice and Bob, real-life examples, technical explanations and diagrams to ensure maximum clarity of the many abstract and complicated subjects. Topics include: secure requirements, design, coding, and deployment; security testing (all forms); common pitfalls; application security programs; securing modern applications; and software developer security hygiene.

Alice and Bob Learn Application Security is perfect for aspiring application security engineers and practicing software developers, as well as software project managers, penetration testers, and chief information security officers who seek to build or improve their application security programs. 

PLEASE NOTE: When you purchase this title, the accompanying PDF will be available in your Audible Library along with the audio.

©2021 John Wiley & Sons, Inc. (P)2021 Gildan Media

What listeners say about Alice and Bob Learn Application Security

Average Customer Ratings

Reviews - Please select the tabs below to change the source of reviews.

No reviews are available
Sort by:
Filter by:
  • Overall
    5 out of 5 stars
  • Performance
    5 out of 5 stars
  • Story
    5 out of 5 stars
  • Maria
  • 2021-08-25

Amazing Secure Coding Resource!

I highly enjoyed listening to this audio book. Breaking down complex AppSec/Security Software issues into bite size chunks that allow the listener to understand how to write Secure Apps.

1 person found this helpful

  • Overall
    4 out of 5 stars
  • Performance
    5 out of 5 stars
  • Story
    4 out of 5 stars
  • Anonymous User
  • 2022-08-15

Your onboarding ti app sec!

Very good asset to initiate you on the world od Application Security. Even better if you don't know anything about that.

  • Overall
    5 out of 5 stars
  • Performance
    5 out of 5 stars
  • Story
    5 out of 5 stars
  • Harlow
  • 2022-07-12

Best in Class Audiobook

At the time of this review there are no audiobooks on this topic that are better than this one.

Sort by:
Filter by:
  • Overall
    3 out of 5 stars
  • Performance
    1 out of 5 stars
  • Story
    2 out of 5 stars
  • mikus
  • 2021-09-21

Very basic, repetitive, poorly read

The book can be useful for high level managers and people with little understanding of technology, but claiming that it's meant for 'practicing software developers' is a huge overstatement.

Most of the content is extremly basic and any programmer should know it already, with some of the examples being almost childish. On top of that the book is repetitive to annoying level, You're going to hear at least 100 times that you should validate input and never deploy software without prior testing, as if the author assumed that the reader is not capable of memorizing basic concepts.

Then it comes the reading - it feels almost as if the book was read by Siri, and even if you speed up the playback, you're going to frantically smash the 'skip' button whenever Tanya starts spelling URLs and code examples. Yeah, she really does it, she does it slow, and makes sure you won't miss any special character.

So do I think it's completely useless? NO! The general concept of the book is good - most of us are going to pick up at least several details that may end up useful and worth further reading or at least inspire to adapt some internal processes.
I also like that many of the recommendations are based in reality and not asking for impossible effort, as many purely theorethical positions do. The book is also fairly up to date, which means it covers some of the topics that may be new for those not keeping up with the latest developmnets.

Overall, that would be a very good 30min read if presented in a concise and organized leaflet. In the current form, if you're technical, you need to decide if you're willing to suffer for 10h just to fish some interesting details, although be warned, keeping focused won't be easy. Consider skipping the first chapter, or several of them.