Home > Application Security Info Center

Application Security Info Center EMAIL THIS The Application Security Info Center provides software security testing news, tips and expert advice to help development teams find and repair security vulnerabilities. MUST READ Application security enters uncharted regions Published by: SearchSoftwareQuality.com | 27 Mar 2008 COLUMN - The revelation that pacemakers can be hacked illustrates how software makers have to start thinking differently about application security and quality. Web application security, development unite Published by: SearchSoftwareQuality.com | 03 Oct 2007 COLUMN - The purchase of Web application security vendors SPI Dynamics and Watchfire by HP and IBM, respectively, indicate that application security is finally being taken seriously. Software security testing: Finding your inner evildoer Published by: SearchSoftwareQuality.com | 06 Aug 2007 ARTICLE - Software testers need to leverage their evil alter-ego to more thoroughly security test Web applications. Application security takes on greater importance in Web 2.0 Published by: SearchSoftwareQuality.com | 02 Jul 2007 ARTICLE - Web 2.0 applications have the same vulnerabilities as regular apps. Security expert Michael Sutton explains how to use application security methods in a dynamic Web environment. 10 Web 2.0 application security how-tos Published by: SearchSoftwareQuality.com | 13 Aug 2009 TIP - From beating login problems to hacking your own applications, this multimedia how-to collection covers all security topics in Web 2.0 and rich Internet applications. SOFTWARE SECURITY TESTING TOOLS from SearchSoftwareQuality.com Put a stop to software espionage by watermarking source code EXPERT RESPONSE - Having software code replicated or stolen is a major cause for concern in the industry. Fortunately there are measures you can take to protect your software source code. How to make your software tamperproof SURREPTITIOUS SOFTWARE - Learn ways to tamperproof and secure your software app from this chapter of the book, Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection. Lesser-known free software testing tools testers should try ARTICLE - A software testing expert surveys useful free and cheap testing and test management tools, including CTE-XL and Unified TestPro. VIEW ALL IN THIS TOPIC SOFTWARE SECURITY TESTING AND TECHNIQUES from SearchSoftwareQuality.com Free Web proxy security tools software testers should get to know TIP - Learn which free Web proxy tools work best and how to use ones like, BurpProxy, Paros Proxy and WebScarab to boost rich Internet applications' security. How to get management on board with Web 2.0 security issues TIP - Ways to get management buy-in for Web 2.0 security testing and quality assurance and to bolster application security before deployment are given in this tip. Web application security best practices: Tips on implementation NEWS - In this video, Hugh Thompson, founder of People Security, discusses Web application security best practices and strategies. VIEW ALL IN THIS TOPIC THREAT MODELING from SearchSoftwareQuality.com Web application security -- How to prevent attacks ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out. Web application security and the PCI DSS LEARNING GUIDE - Software security should be integrated into the software development lifecycle. The PCI DSS can't account for all this, so here is advice to get you started on a holistic approach. The essentials of Web application threat modeling TIP - A critical part of Web application security is mapping out what's at risk -- or threat modeling. Kevin Beaver outlines the essential steps to get you started. VIEW ALL IN THIS TOPIC BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE) from SearchSoftwareQuality.com Problems caused by skipping analysis stage of SDLC EXPERT RESPONSE - A requirements expert explains the possible pitfalls of skipping the analysis phase in the software life cycle development (SDLC). Inexpensive phase of SDLC to catch and fix bugs EXPERT RESPONSE - Is there a phase in the development lifecycle where bugs can inexpensively repaired? This is a common question asked to our expert Kevin Beaver. GatherSpace beefs up cloud-based requirements management ARTICLE - GatherSpace version 2 is now available and continues to offer low-cost software requirements gathering technology, that is easily learned and easily implemented. VIEW ALL IN THIS TOPIC

	About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS	SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines. TechTarget Corporate Web Site  |  Media Kits  |  Site Map All Rights Reserved, Copyright 2006 - 2009, TechTarget | Read our Privacy Policy