| |
| Home >
Security > Application Security |
 |
|
|
|
Application Security encompasses measures taken to prevent exceptions in the security policy of an application or the underlying system (vulnerabilities) through flaws in the design, development, or deployment of the application. |
|
| |
 |
Results 1 - 25 of 55 matches |
Sort Results By : Published Date | Title | Company name |
|
|
|
| By : Fortify |
Published Date: Nov 19, 2008 |
|
|
While investments to secure the enterprise continue to rise, breaches into company systems and data are skyrocketing. These cyber crimes are consistently debilitating organizations operations, reputations and ultimately, viability. Today’s CEOs are demanding aggressive strategies to protect their business. CIOs and CSOs are working together to employ proven Business Software Assurance approaches across the enterprise to stay ahead of constant threats.
Download Now
|
 |
|
|
|
|
|
|
Engineering firm Barge Waggoner Sumner & Cannon, Inc. needed to collaborate more efficiently across its 11 offices in the eastern United States. The firm chose ProjectWise collaboration software for engineering content management, content publishing, and design review, and integrated it with Microsoft® Office SharePoint® Server 2007, to manage business processes and documents in a distributed environment. Find out more.
Download Now
|
 |
|
|
|
| By : Fortify |
Published Date: Sep 15, 2008 |
|
|
Adrian Asher, Chief Security Officer at Betfair, an online UK betting exchange explains how he manages a “culture of security” and protects the Betfair brand in this 20-minute candid interview.
Download Now
|
|
|
|
|
| By : Fortify |
Published Date: Sep 15, 2008 |
|
|
Fortify Software conducted a candid interview with Avi Rubin, Professor at Johns Hopkins University and specialist in the field of eVoting security risks. He discusses the concerns around software security as well as the voting solutions surrounding software independence.
Download Now
|
|
|
|
|
| By : Fortify |
Published Date: Aug 15, 2008 |
|
|
For a CISO, open source introduces a new source of risk and unique security challenge: how do you influence developers over whom you have no direct management control? Jennifer Bayuk, former CISO of Bear Stearns, provides insight on best practices for evaluating, deploying and managing open source code.
Download Now
|
|
|
|
|
|
|
|
Messaging has rapidly become the one, true business critical application in use today by many, probably most, enterprises. Even more so than Enterprise Resource Planning or other cross-business applications, any failure in the messaging system is noticed by, and affects everyone. If a person cannot get an e-mail to or from another person then they are immediately in contact with the help desk to report the problem. Users are far less inclined to be forgiving when it comes to an e-mail outage; they just expect it to work.
Download Now
|
 |
|
|
|
| By : MX Logic |
Published Date: Apr 24, 2008 |
|
|
Rootkits, Trojans, ransomware, Denial-of-Service and much more – this newly released white paper from MX Logic covers the everchanging security threat landscape. Learn what malicious intrusions are out there, how to identify them and how to keep your network safe.
Download Now
|
 |
|
|
|
| By : Sophos |
Published Date: Apr 10, 2008 |
|
|
Employees increasingly expect to use the internet at work for their own personal use in return for longer hours, working from home and interrupting vacations. This has a number of security, productivity, bandwidth and legal ramifications that require organizations to create and implement a web usage policy that is backed up by effective web filtering tools.
Download Now
|
 |
|
|
|
|
|
|
During the 80s, war dialing and phone phreaking were the attacks that garnered all the headlines. In the 90s it was all about web defacement and the ubiquitous email virus. The last seven years have given rise to identity data theft and privacy concerns. For the past twenty years, organizations have focused on protecting the network; but in the last ten years it has become clear that the core threat is not, nor really ever was, access to the network.
Download Now
|
 |
|
|
|
|
|
|
There are many key drivers for application security, such as managing the high levels of complexity in rapidly changing IT environments as well as regulatory and compliance demands. With recent high profile breaches and their consequences in the headlines, the direct line between insecure software and data insecurity has never been more clear. As a result, organizations with a strong commitment to data integrity and privacy are taking concrete, measurable steps to ensure the software systems that control data are developed securely.
Download Now
|
|
|
|
|
| By : Quocirca |
Published Date: Mar 18, 2008 |
|
|
Today, many organizations are increasingly reliant on software application development to deliver them competitive edge. Simultaneously, they are progressively opening up their computer networks to business partners, customers and suppliers and making use of next-generation programming languages and computing techniques to provide a richer experience for these users. However, hackers are refocusing their attention on the vulnerabilities and flaws contained in those applications.
Download Now
|
 |
|
|
|
|
|
|
This document provides a technical description of the security features built into GoToMeeting. It has been written for technical evaluators and security specialists who are responsible for ensuring the safety of their company’s network and the privacy and integrity of business communications.
Download Now
|
 |
|
|
|
| By : MX Logic |
Published Date: Jan 16, 2008 |
|
|
In this recent report, the Aberdeen Group’s research revealed that 100% of Best-in-Class companies consume some managed security services as part of their security strategy. The most widely deployed and easiest to implement managed security service is email security.
Download Now
|
|
|
|
|
| By : Fortify |
Published Date: Jan 15, 2008 |
|
|
With an extensive background in police, military, government, and industry security, Howard Schmidt explains how to respond to the changing landscape of cyber threats and how business leaders are helping set the standards for application security. He then profiles industry role models who are setting the standard for application security.
Download Now
|
|
|
|
|
| By : CA |
Published Date: Dec 31, 2007 |
|
|
PCI Compliance has become a business requirement for any company involved in the processing of credit card information. It requires strong security controls over all systems and applications that process or store cardholder information. These controls serve to manage vulnerabilities and to control access to all confidential information.
Download Now
|
 |
|
|
|
| By : IBM |
Published Date: Dec 27, 2007 |
|
|
There are many ways to uncover Web application vulnerabilities. This white paper examines a few of these vulnerability detection methods – comparing and contrasting manual penetration testing with automated scanning tools. What you’ll discover is that neither of these methods are an exhaustive method for identifying Web application vulnerabilities.
Download Now
|
 |
|
|
|
| By : IBM |
Published Date: Dec 26, 2007 |
|
|
As businesses grow increasingly dependent upon Web applications, these complex entities are becoming more difficult to secure. Most companies equip their Web sites with firewalls, Secure Sockets Layer (SSL), and network and host security, but the majority of attacks are on applications themselves.
Download Now
|
|
|
|
|
|
|
|
The PCI DSS is demonstrably becoming a de facto standard of due care for any organization responsible for the privacy and integrity of data. The increased focus on application security in the latest revisions of the PCI DSS can be traced directly to many of the recent high profile breaches, where insecure applications have proved to be the point of access for hackers, and the source of data loss.
Download Now
|
|
|
|
|
|
|
|
This paper will discuss the need for addressing security concerns in outsourced applications, outline a framework for addressing those concerns, explore the role of source code review to assess and certify outsourced applications, and provide a sample contract addendum for including secure code requirements in RFP's and outsourcing contracts.
Download Now
|
|
|
|
|
|
|
|
Organizations should implement source code analysis tools as part of the software development life cycle to find and fix the highest number of security issues early in the project. This will result in a higher-quality product and lower overall application life cycle costs. Countless studies and analyst recommendations suggest the value of improving software security during the development life cycle (SDLC) rather than trying to address security vulnerabilities in software discovered after widespread adoption and deployment.
Download Now
|
|
|
|
|
|
|
|
The path to application security begins by rigorously testing source code for any and all vulnerabilities, to ensure the application will not compromise, or allow others to compromise, data privacy and integrity. This paper outlines the steps to secure source code development practices, and presents a source code security review checklist.
Download Now
|
|
|
|
|
| By : Fortify |
Published Date: Apr 16, 2007 |
|
|
This webinar explores 12 of the most common security traps in Java by examining the causes of security failures in modern Java–based applications. Approaching security with an “outside in” style, we look at vulnerabilities from a developer’s perspective, focusing on the source code.
Download Now
|
|
|
|
|
|
|
|
Businesses must adapt quickly to realize new opportunities and maximize value from their critical information assets. However traditional security controls are no longer sufficient, as the enemy can now gain control of your database using novel, customized and highly personal attacks. Vulnerabilities in your applications are now the weakest link.
Download Now
|
 |
|
|
|
|
|
|
This industry white paper takes the mystery out of the key differences in the main classes of firewall architectures. It was independently written by Marcus J. Ranum, a world-renowned expert on security system design and implementation. It includes fundamental lessons about building application layer firewalls, technical examples, and concludes with predictions about the future of firewall technology.
Download Now
|
 |
|
|
|
|
|
|
This paper outlines these new threats and discusses the limited effectiveness of reactive legacy Web security solutions against those threats. The paper then outlines the new reputation based, proactive security paradigm that is necessary for securing Web 2.0 applications.
Download Now
|
|
|
|
|
|
Sort Results By : Published Date | Title | Company name |
|
|
<< Start < Previous 1 2 3 Next > End >>
|
| |
More Security Topics |
|
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security |
|
 |
|
