Home > Application Security Info Center

Application Security Info Center EMAIL THIS The Application Security Info Center provides software security testing news, tips and expert advice to help development teams find and repair security vulnerabilities. MUST READ Application security shouldn't involve duct tape, Band-Aids or bubble gum Published by: SearchSoftwareQuality.com | 15 May 2007 ARTICLE - By applying a multilayered approach to application security throughout the SDLC, software ships more securely, closer to the scheduled delivery date and closer to anticipated cost. Application security enters uncharted regions Published by: SearchSoftwareQuality.com | 27 Mar 2008 COLUMN - The revelation that pacemakers can be hacked illustrates how software makers have to start thinking differently about application security and quality. Web application security, development unite Published by: SearchSoftwareQuality.com | 03 Oct 2007 COLUMN - The purchase of Web application security vendors SPI Dynamics and Watchfire by HP and IBM, respectively, indicate that application security is finally being taken seriously. Software security testing: Finding your inner evildoer Published by: SearchSoftwareQuality.com | 06 Aug 2007 ARTICLE - Software testers need to leverage their evil alter-ego to more thoroughly security test Web applications. Application security takes on greater importance in Web 2.0 Published by: SearchSoftwareQuality.com | 02 Jul 2007 ARTICLE - Web 2.0 applications have the same vulnerabilities as regular apps. Security expert Michael Sutton explains how to use application security methods in a dynamic Web environment. SOFTWARE SECURITY TESTING TOOLS from SearchSoftwareQuality.com Top tools for testing Web application security EXPERT RESPONSE - When it comes to testing Web applications for security, the prominent commercial tools support a variety of languages while open source tools tend to be limited. Static analysis tool helps software engineers find bugs during builds ARTICLE - Klocwork Insight allows engineers to view and correct their own code before it's submitted to QA. Mentor Graphics found this static analysis tool fit well with agile practices. Web application security -- How to prevent attacks ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out. VIEW ALL IN THIS TOPIC SOFTWARE SECURITY TESTING AND TECHNIQUES from SearchSoftwareQuality.com Software quality needs to be a continuous process TIP - By implementing a system that helps build quality and security into the software, you reduce defects early and avoid having to make costly, time-consuming repairs later. Cloud computing's effect on application security PODCAST - In part 3 of his interview, Craig Balding talks about the security elements surrounding cloud computing. Web Security Testing Cookbook sample recipe TIP - Malicious content in files can cause difficulties at the server. Paco Hope and Ben Walther explain how to test how your application handles files that have malicious content. VIEW ALL IN THIS TOPIC THREAT MODELING from SearchSoftwareQuality.com Web application security -- How to prevent attacks ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out. Reinvigorate your threat modeling process BEST WEB LINK - There are many things called threat modeling. Rather than argue about which is "the one true way," consider your needs and what your skills, abilities, and schedules are, and then work with a method that's best for you. Web application security and the PCI DSS LEARNING GUIDE - Software security should be integrated into the software development lifecycle. The PCI DSS can't account for all this, so here is advice to get you started on a holistic approach. VIEW ALL IN THIS TOPIC BUILDING SECURITY INTO THE SDLC (SOFTWARE DEVELOPMENT LIFE CYCLE) from SearchSoftwareQuality.com Browser security a concern for website development ARTICLE - The number of browsers and the rise of sophisticated attacks against them, such as CSRF and clickjacking, complicate website development, security and testing. How to prevent HTTP response splitting EXPERT RESPONSE - HTTP response splitting is a serious Web attack that can wreak havoc on your Web applications. Security expert Ramesh Nagappan explains how this attack works and what professionals can do to prevent this exploit. Web application security -- How to prevent attacks ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out. VIEW ALL IN THIS TOPIC

	About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS	SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines. TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map All Rights Reserved, Copyright 2006 - 2008, TechTarget | Read our Privacy Policy