 |
|
|
|
|
Threat modeling
Threat modeling tips and advice to help software development teams create secure, quality software
|
|
 |
|
|
|
|
Top Web application security threats for 2007
SearchSoftwareQuality.com | 07 Dec 2006
ARTICLE - Web application threats increased significantly in 2006, and they aren't expected to let up. SPI Dynamics identifies which Web trends will be security concerns in 2007.
|
|
|
One simple rule to make your Web apps more secure
SearchSoftwareQuality.com | 19 Oct 2006
INTERVIEW - SPI Dynamics' Caleb Sima recommends developers focus on input validation as a top priority against threats to Web application security, such as SQL injection and XSS.
|
|
|
| EXPERT TECHNICAL ADVICE: 1 - 3 of 55 |
|
|
|
|
|
The essentials of Web application threat modeling
Submitted By: SearchSoftwareQuality.com | 24 Mar 2008
TIP - A critical part of Web application security is mapping out what's at risk -- or threat modeling. Kevin Beaver outlines the essential steps to get you started.
|
|
|
How to implement security in Java EE and Java ME
18 Jul 2007
EXPERT ANSWER - Web application security in Java EE and Java ME is aided by security architectures inherent in each platform. Expert Ramesh Nagappan explains how to understand these architectures and use them to achieve Java security.
|
|
|
Protection against "zero-minute" exploits
Submitted By: SearchAppSecurity.com | 11 Jan 2007
TIP - The gap of time between a vulnerability's discovery and an attack on that vulnerability is shrinking. Amir Peles delves into "zero-minute" exploits and offers a plan for defense.
|
|
|
| REFERENCE & LEARNING: 1 - 3 of 11 |
|
|
|
|
|
Web application security -- How to prevent attacks
20 Aug 2008
ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out. |
|
|
Web application security and the PCI DSS
SearchSoftwareQuality.com | 03 Jul 2008
LEARNING GUIDE - Software security should be integrated into the software development lifecycle. The PCI DSS can't account for all this, so here is advice to get you started on a holistic approach. |
|
|
Stop SQL injection attacks on applications
07 Feb 2006
FEATURED TOPIC - SQL injection attacks have been known to take down many Web sites and applications. What can you do to protect against these attacks? Learn more in these articles and tips. |
|
|
Simplify Your Security Decision - Vendor Webcast
| PREMIERED: |
05 OCT 2004, 12:00 EDT (16:00, GMT) |
| SUMMARY: |
Today's security threats are more sophisticated, frequent and dangerous than ever before. Traditional antivirus and firewall point products are no longer capable of providing adequate protection. Learn how to simplify this decision with a unified, proactive approach to internet security. |
|
|
|
Injection attacks -- Knowledge and prevention
Published by: SearchAppSecurity.com | 31 Oct 2006
PODCASTS - SQL injection is a major threat to application security, but what of other injection attacks? Caleb Sima dissects these exploits and offers astute prevention tips in this podcast.
|
|
|
| BEST WEB LINKS: 1 - 3 of 55 |
|
|
|
|
|
Reinvigorate your threat modeling process
MSDN Magazine | 01 Jul 2008
BEST WEB LINK - There are many things called threat modeling. Rather than argue about which is "the one true way," consider your needs and what your skills, abilities, and schedules are, and then work with a method that's best for you.
|
|
|
Getting started with threat modeling
J.D. Meier's Blog | 20 Dec 2007
BEST WEB LINK - Using threat modeling you can identify potential security issues to help you shape your application's security design. Not sure how to create a threat model? Here are some links to get you started.
|
|
|
|
|
|
|
