"Application Security" Blogs

Blogs Results

1. Upcoming Webinar Focuses on SOA Application Security

   [ Blog ] Topic: SOA | Author: LoraineLawson | Date Published: 10/11/2007

   If you're looking for a lunch date next Wednesday - Oct. 17 - why not brown-bag it and hang out with consultant and ZDNet / ebizQ blogger, Joe McKendrick, who happens to be hosting an eBizQ Webinar, " Think Globally, Act Locally for SOA Security - Strategies for Securing Applications in an...

2. Application Security from the Beginning No Longer Such a Tough Nut to Crack

   [ Blog ] Topic: Application Security | Author: RalphDeFrangesco | Date Published: 07/07/2009

   I remember application security from the good old days -- there was none. We coded up a C-program or a Fortran program and crossed our fingers. As application security matured, we started reviewing code line-by-line for security defects; it's all there was. We made many, many mistakes along the...

3. Don't Skip Defined Test Procedure Before Installing Software

   [ Blog ] Topic: Application Security | Author: RalphDeFrangesco | Date Published: 08/10/2009

   I don't write a lot about because, quite frankly, I am more of an infrastructure techie today. However, at one time I was an application coder so I do understand its importance. After all, applications run on our infrastructure so we as infrastructure professionals should understand the...

4. Quocirca: Outsourcing Application Development Creates 'Greater Onus' for Testing

   [ Blog ] Topic: Software Testing | Author: AnnAll | Date Published: 04/08/2008

   As if cost and quality weren't enough to worry about with outsourcing initiatives, businesses need to address the inherent security of applications developed for them by outsiders, according to a recent report by Quocirca. Ninety percent of the U.S. and European companies Quocirca surveyed...

5. Mobile App Developers Need to Think About Security

   [ Blog ] Topic: Application Security | Author: CarlWeinschenk | Date Published: 01/18/2007

   A Microsoft TechNet story discusses the best ways to secure mobile applications. The most important element of the piece, from our perspective, is right at the beginning, however. The writer opens by saying: "'Security' and 'mobile application development' rarely appear in the same sentence.'"...

6. Focus at RSA Shifts to Protecting the Data

   [ Blog ] Topic: Network Access Control | Author: CarlWeinschenk | Date Published: 02/07/2007

   This Government Computer News story describes the keynote given by Microsoft chairman Bill Gates and chief research and strategy officer Craig Mundie at the RSA convention that is being held this week in San Francisco. Clearly, the emphasis is shifting from protecting the network to protecting...

7. SSL and IPSec VPNs Start Looking More Alike

   [ Blog ] Topic: VPN | Author: CarlWeinschenk | Date Published: 04/19/2007

   It isn't until near the end of this very good Help Net Security overview and update on secure socket layer virtual private networks (SSL VPNs) that the other major type of VPN -- IP Security (IPSec) -- makes an appearance. And, at that point, it really only is used for comparison to SSL. ...

8. Are Good Security and Web 2.0 Incompatible?

   [ Blog ] Topic: Application Security | Author: CarlWeinschenk | Date Published: 10/04/2007

   There are far too many numbers in this TechNewsWorld story, which reports results of a survey on Web 2.0 threats conducted by Forrester Research for Secure Computing. The survey, released in conjunction with the introduction of the vendor's Secure Web 2.0 Anti-Threat (SWAT) initiative, shows...

9. Danger is Everywhere. Don't Panic, Just Write Good Code

   [ Blog ] Topic: Vulnerabilities and Patches | Author: CarlWeinschenk | Date Published: 12/10/2007

   IT and security departments should pay attention to a assessment by security company Finjan that criminals are increasingly targeting Web applications that aren't generally thought of as security risks. These include chat programs, content-management systems, discussion forums, media players and...

10. Security Staffs Must Beware as Hackers Knock on the Backdoor

    [ Blog ] Topic: Application Security | Author: CarlWeinschenk | Date Published: 12/20/2007

    Kelly Jackson Higgins posted an interesting and unsettling story at Dark Reading that focuses on back doors which, as the name implies, are programs that provide easy or special access into software products. There are legitimate reasons for backdoors, such as shortcuts for testing. There also...

11. SaaS and Security are Perfect Together

    [ Blog ] Topic: SaaS | Author: CarlWeinschenk | Date Published: 03/06/2008

    Earlier this week, eWeek reported that Webroot is moving further into the software-as-a-service (SaaS) sector . The report says that during the next couple of months, the firm will expand its SaaS efforts from e-mail to Web security in the small- and medium-size business (SMB) sector. Data heading...

12. More Scary News on Web 2.0, Mashups

    [ Blog ] Topic: Software and Web Development | Author: CarlWeinschenk | Date Published: 03/27/2008

    I blogged a little earlier in the day about bad news from WhiteHat Security about threats opened up by new Web 2.0 technologies. WhiteHat is not alone. The press release describing Websense's ThreatSeeker Network , which was introduced this week, takes the position that the...