Christoph Kern is an information security engineer at Google and was previously a senior security architect at Yodlee, a provider of technology solutions to the financial services industry. He has extensive experience in performing security design reviews and code audits, designing and developing secure applications, and helping product managers and software engineers effectively mitigate security risks in their software products.
From the reviews: It is written based on a course for beginning programmers. ... The book has three main parts: security design principles, secure programming techniques, and an introduction to cryptography. ... Exercises are included at the end of each part in order to provide suggestions for getting hands-on experience. (A. Marien, ACM Computing Reviews, Vol. 49 (5), May, 2008)