Home >
> Application Security
|
 |
|
|
|
Application Security encompasses measures taken to prevent exceptions in the security policy of an application or the underlying system (vulnerabilities) through flaws in the design, development, or deployment of the application. |
 |
|
Results 1 - 25 of 57 matches |
Sort Results By : Published Date | Title | Company name |
|
|
Software Assurance - An Executive Discussion on Securing the Enterprise |
| By :Fortify |
Published Date: Nov 19, 2008 |
|
While investments to secure the enterprise continue to rise, breaches into company systems and data are skyrocketing. These cyber crimes are consistently debilitating organizations operations, reputations and ultimately, viability. Today’s CEOs are demanding aggressive strategies to protect their business. CIOs and CSOs are working together to employ proven Business Software Assurance approaches across the enterprise to stay ahead of constant threats.
Download Now
|
 |
|
|
|
Design Firm Raises Per-Employee Revenue by 25 Percent with Collaboration Solution |
|
|
Engineering firm Barge Waggoner Sumner & Cannon, Inc. needed to collaborate more efficiently across its 11 offices in the eastern United States. The firm chose ProjectWise collaboration software for engineering content management, content publishing, and design review, and integrated it with Microsoft® Office SharePoint® Server 2007, to manage business processes and documents in a distributed environment. Find out more.
Download Now
|
 |
|
|
|
|
|
Software Vulnerabilities with eVoting |
| By :Fortify |
Published Date: Sep 15, 2008 |
|
Fortify Software conducted a candid interview with Avi Rubin, Professor at Johns Hopkins University and specialist in the field of eVoting security risks. He discusses the concerns around software security as well as the voting solutions surrounding software independence.
Download Now
|
|
|
|
|
A CISO's Guide to Securing Open Source Software |
| By :Fortify |
Published Date: Aug 15, 2008 |
|
For a CISO, open source introduces a new source of risk and unique security challenge: how do you influence developers over whom you have no direct management control? Jennifer Bayuk, former CISO of Bear Stearns, provides insight on best practices for evaluating, deploying and managing open source code.
Download Now
|
|
|
|
|
Preventing Your Next Microsoft Exchange Outage |
|
|
Messaging has rapidly become the one, true business critical application in use today by many, probably most, enterprises. Even more so than Enterprise Resource Planning or other cross-business applications, any failure in the messaging system is noticed by, and affects everyone. If a person cannot get an e-mail to or from another person then they are immediately in contact with the help desk to report the problem. Users are far less inclined to be forgiving when it comes to an e-mail outage; they just expect it to work.
Download Now
|
 |
|
|
|
Identifying & Thwarting Malicious Intrusions |
| By :MX Logic |
Published Date: Apr 24, 2008 |
|
Rootkits, Trojans, ransomware, Denial-of-Service and much more – this newly released white paper from MX Logic covers the everchanging security threat landscape. Learn what malicious intrusions are out there, how to identify them and how to keep your network safe.
Download Now
|
 |
|
|
|
Effective Web Policies: Ensuring Staff Productivity and Legal Compliance |
| By :Sophos |
Published Date: Apr 10, 2008 |
|
Employees increasingly expect to use the internet at work for their own personal use in return for longer hours, working from home and interrupting vacations. This has a number of security, productivity, bandwidth and legal ramifications that require organizations to create and implement a web usage policy that is backed up by effective web filtering tools.
Download Now
|
 |
|
|
|
The Right Tool for the Right Job: An Application Security Tools Report Card |
|
|
During the 80s, war dialing and phone phreaking were the attacks that garnered all the headlines. In the 90s it was all about web defacement and the ubiquitous email virus. The last seven years have given rise to identity data theft and privacy concerns. For the past twenty years, organizations have focused on protecting the network; but in the last ten years it has become clear that the core threat is not, nor really ever was, access to the network.
Download Now
|
 |
|
|
|
Software Security Governance in the Development Lifecycle |
|
|
There are many key drivers for application security, such as managing the high levels of complexity in rapidly changing IT environments as well as regulatory and compliance demands. With recent high profile breaches and their consequences in the headlines, the direct line between insecure software and data insecurity has never been more clear. As a result, organizations with a strong commitment to data integrity and privacy are taking concrete, measurable steps to ensure the software systems that control data are developed securely.
Download Now
|
|
|
|
|
Why Application Security is Crucial and What Companies Are Doing About It |
| By :Quocirca |
Published Date: Mar 18, 2008 |
|
Today, many organizations are increasingly reliant on software application development to deliver them competitive edge. Simultaneously, they are progressively opening up their computer networks to business partners, customers and suppliers and making use of next-generation programming languages and computing techniques to provide a richer experience for these users. However, hackers are refocusing their attention on the vulnerabilities and flaws contained in those applications.
Download Now
|
 |
|
|
|
GoToMeeting Security White Paper |
|
|
This document provides a technical description of the security features built into GoToMeeting. It has been written for technical evaluators and security specialists who are responsible for ensuring the safety of their company’s network and the privacy and integrity of business communications.
Download Now
|
 |
|
|
|
What's the Big Deal with Managed Security Services? |
| By :MX Logic |
Published Date: Jan 16, 2008 |
|
In this recent report, the Aberdeen Group’s research revealed that 100% of Best-in-Class companies consume some managed security services as part of their security strategy. The most widely deployed and easiest to implement managed security service is email security.
Download Now
|
|
|
|
|
|
|
|
|
Web Application Security: Automated Scanning Versus Manual Penetration Testing |
| By :IBM |
Published Date: Dec 27, 2007 |
|
There are many ways to uncover Web application vulnerabilities. This white paper examines a few of these vulnerability detection methods – comparing and contrasting manual penetration testing with automated scanning tools. What you’ll discover is that neither of these methods are an exhaustive method for identifying Web application vulnerabilities.
Download Now
|
 |
|
|
|
Understanding Web Application Security Challenges |
| By :IBM |
Published Date: Dec 26, 2007 |
|
As businesses grow increasingly dependent upon Web applications, these complex entities are becoming more difficult to secure. Most companies equip their Web sites with firewalls, Secure Sockets Layer (SSL), and network and host security, but the majority of attacks are on applications themselves.
Download Now
|
|
|
|
|
Meeting the PCI Application Security Requirements: Building Compliance In |
|
|
The PCI DSS is demonstrably becoming a de facto standard of due care for any organization responsible for the privacy and integrity of data. The increased focus on application security in the latest revisions of the PCI DSS can be traced directly to many of the recent high profile breaches, where insecure applications have proved to be the point of access for hackers, and the source of data loss.
Download Now
|
|
|
|
|
Trust, But Verify: How to Manage Risk in Outsourced Applications |
|
|
This paper will discuss the need for addressing security concerns in outsourced applications, outline a framework for addressing those concerns, explore the role of source code review to assess and certify outsourced applications, and provide a sample contract addendum for including secure code requirements in RFP's and outsourcing contracts.
Download Now
|
|
|
|
|
Secure at the Source: Implementing Source Code Vulnerability Testing in the Development Life Cycle |
|
|
Organizations should implement source code analysis tools as part of the software development life cycle to find and fix the highest number of security issues early in the project. This will result in a higher-quality product and lower overall application life cycle costs. Countless studies and analyst recommendations suggest the value of improving software security during the development life cycle (SDLC) rather than trying to address security vulnerabilities in software discovered after widespread adoption and deployment.
Download Now
|
|
|
|
|
The Path to a Secure Application: A Source Code Security Review Checklist |
|
|
The path to application security begins by rigorously testing source code for any and all vulnerabilities, to ensure the application will not compromise, or allow others to compromise, data privacy and integrity. This paper outlines the steps to secure source code development practices, and presents a source code security review checklist.
Download Now
|
|
|
|
|
Dig Your Own Hole - 12 Ways to Go Wrong With Java Security |
| By :Fortify |
Published Date: Apr 16, 2007 |
|
This webinar explores 12 of the most common security traps in Java by examining the causes of security failures in modern Java–based applications. Approaching security with an “outside in” style, we look at vulnerabilities from a developer’s perspective, focusing on the source code.
Download Now
|
|
|
|
|
|
|
Dude! You Say I Need an Application Layer Firewall?! |
|
|
This industry white paper takes the mystery out of the key differences in the main classes of firewall architectures. It was independently written by Marcus J. Ranum, a world-renowned expert on security system design and implementation. It includes fundamental lessons about building application layer firewalls, technical examples, and concludes with predictions about the future of firewall technology.
Download Now
|
 |
|
|
|
Web 2.0 Security Risks. Are you protected? |
|
|
This paper outlines these new threats and discusses the limited effectiveness of reactive legacy Web security solutions against those threats. The paper then outlines the new reputation based, proactive security paradigm that is necessary for securing Web 2.0 applications.
Download Now
|
|
|
|
| |
|
|
|
Results 1 - 25 of 57 matches |
Sort Results By : Published Date | Title | Company name |
Home >
> Application Security
|
|
<< Start < Previous 1 2 3 Next > End >>
|
More Security Topics |
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security, PCI Compliance |
|
|
|
SPECIAL REPORT |
|
IDC Workbook: Assess the Value of Deduplication for your Storage Consolidation Initiatives
|
|
Enterprises are caught between the continued growth in the amount of data they create, store, and depend on, and the need to consolidate IT resources to reduce costs and create a more 'green' IT environment. But while organizations have worked to reduce IT footprint, they must balance the need to improve resource utilization with more efficient protection and recovery capabilities, all in the face of increasing capacity pressures. Download the IDC Workbook: Protecting Data in the Context of Enterprise Infrastructure Consolidation and Data Growth: The Rise of New Technologies. |
|
|
