ADVICE: >> Secure SDLC: Integrating security into your software development life cycle TIP :Integrating security into the SDLC is essential for developing quality software. While there are no standard practices, these ... >> SQL injection: Developers fight back TIP :SQL injection attacks are a popular threat against application security. Anurag Agarwal provides 10 steps developers can use ... >> Technology alone cannot defeat Web application attacks: Understanding technical vs. logical vulnerabilities TIP :Application security expert Jeremiah Grossman explains why Web site security can't be fully automated. Web sites have logical ... >> Discover the power of .NET's code access security TIP :Input validation is easy with .NET's security tools. Sangita Pakala explains how you can use Link Demand and Strong Names to ... >> Threat modeling enhanced with misuse cases TIP :Misuse cases capture all the possible attacks on an application, as well as mitigation steps, helping architects, developers ... >> Stronger authentication needed for Web applications TIP :In today's world of sophisticated attacks, application developers need to consider strengthening authentication processes ... >> Understanding directory traversal attacks TIP :Directory traversal attacks are the very common, very dangerous HTTP exploits you never hear about. For the sake of your Web ... >> Biometric authentication replacing passwords: Does authentication get better or worse? TIP :Biometric authentication eliminates some of the problems we see with password authentication, but it also raises questions. >> Find Ajax security flaws using tests TIP :Ajax, JavaScript, RSS technology and Active X are all client-side active content that needs to be manually tested. Andres ... >> SQL injection: Secure your Web applications TIP :SQL injection exploits wreak havoc on vulnerable Web sites. Expert Caleb Sima teaches you how to protect your applications ...

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Building security into the SDLC (Software development life cycle) Web application security and the PCI DSS PCI DSS compliance: Web application firewalls (WAFs) PCI DSS compliance: The basics PCI DSS compliance: Code review PCI DSS compliance: WAF, code review or both? Application security careers have bright future Writing software requirements that address security issues Software Security Engineering: A Guide for Project Managers -- Chapter 3, Requirements Engineering for Secure Software PCI DSS compliance: Web application firewall or code review? Application security enters uncharted regions

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary