Special Report: Securing applications -- The new frontier in security

	Building security into the SDLC (Software development life cycle)
	Problems caused by skipping analysis stage of SDLC
	Inexpensive phase of SDLC to catch and fix bugs
	GatherSpace beefs up cloud-based requirements management
	ALM: Best of breed vs. complete systems
	Software development life cycle phases, iterations, explained step by step
	The role of quality assurance (QA) pros in software security
	Common software security risks and oversights
	Why the quality assurance department should be involved in testing
	How to develop secure applications
	Secure software development practices 'not rocket science'

	Threat modeling
	Web application security and the PCI DSS
	The essentials of Web application threat modeling
	How to implement security in Java EE and Java ME
	Application security shouldn't involve duct tape, Band-Aids or bubble gum
	Stop SQL injection attacks on applications
	How to counter XSS attacks
	Breaking the same origin barrier of JavaScript
	Protection against "zero-minute" exploits
	Denial of service and Ajax
	CSRF attack vector with Ajax serialization

	Software security testing and techniques
	Free Web proxy security tools software testers should get to know
	How to get management on board with Web 2.0 security issues
	Web application security best practices: Tips on implementation
	Testing strategies for complex environments
	How to make your software tamperproof
	Ways to approach application performance testing on a tight budget
	How can I tell if my software security has been breached?
	Is online application testing for smartphones different from other software testing?
	Software testers facing six big challenges today, StarWest keynoter says
	Lesser-known free software testing tools testers should try