News (154)
India to get a look at Windows code?
India may soon become the latest Asian country to gain access to the source code of Microsoft's Windows operating system. Read more »
Microsoft's leaner approach to Vista security
Microsoft is talking up support for hardware-based security in Windows Vista, though only a sliver of the company's original plan will make it into the operating system. Read more »
Security guru wants access to bug databases
Security expert Ross Anderson has called for empirical research to be conducted into whether open source or closed source software is more secure, and into the impact that development practices such as extreme programming (XP) have on code quality. Read more »
Aust government signs agreement to see Windows code
The Australian government is to gain access to the source code underlying Microsoft's Windows operating system after signing an agreement with the software heavyweight in Canberra yesterday. Read more »
Microsoft to release more source code?
Microsoft is considering the release of source code for a popular tool used to build Windows programs. Read more »
Psst...now it's Cisco source code up for sale
The Source Code Club has opened up shop again. Read more »
Sun reluctant to make Java open source
The company's top software executive calls IBM's proposal to make Java open source "weird" and says it would encourage incompatible standards. Read more »
Microsoft to reveal more Longhorn details
Microsoft is expected next month to disclose more details on Longhorn, its planned upgrade to Windows, as the company looks to drive demand for the forthcoming operating system. Read more »
Security experts warn of potential malicious AIR code
On Monday, Adobe Systems rolled out its new Web 2.0 development tool, Adobe Integrated Runtime, or AIR. Following its release were some concerns from the security community. Read more »
Flaws found in open source codes
A project funded by the US Department of Homeland Security has praised improvements in open source security, while outlining some common errors. Read more »
Features (256)
Develop secure software at the application level
Protect your application from input overflow and underflow attacks, and from other common tactics with these development techniques. Read more »
Develop applications that prevent intrusion
Designing secure applications requires developers to look beyond their own code. Accessing APIs or COM objects or establishing system privileges can result in security vulnerabilities that can be prevented. Read more »
CGI wrappers for Apache-based apps can boost security
CGI scripts represent a big potential security risk in Web development, but using CGI wrappers can help insulate your servers from attack. Here's an outline of how to create CGI wrappers to protect an Apache Web server. Read more »
Make managed code work with .NET's CAS
Developers and administrators can set permission and trust levels with code access security (CAS), while allowing the code to execute effectively. Read more »
Security through obscurity won't secure your code
Most applications use some form of security through obscurity, but you should avoid it when writing your apps. ZDNet Australia offers these tips on how to tighten up your code. Read more »
Security models made easy
The right level of security to allow end-users access your applications can be a tough job in a dynamic enterprise environment. Here are some tips to help you sleep easier at night. Read more »
Follow these steps to secure your data layer
A secure data layer is essential for a truly secure application. Learn how to nurture a secure environment for the pivotal Data tier of your application with the correct tools. Read more »
Ask Chuck: ASP.NET best security practices
What best practices should you follow for an ASP.NET application? Our resident .NET expert Charles Sterling offers this quick tip. Read more »
Secure SQL Server: Installing for security
Securing SQL Server is vital to the design of any database system. Learn how to install SQL securely, protect data, and ensure its validity. Read more »
Five steps to designing a secure system with TCB
Security must be a factor in system design from the beginning. It starts with defining the trusted computing base (TCB). Follow these steps to achieve a secure system. Read more »
Blog (10)
AJAX applications and security
-- Douglas Crockford, the creator of JSON, gave a talk entitled "AJAX Security" at the recent Web Directions South conference. In this talk, Crockford discussed some of the security concerns with AJAX applications and what can be done to address them. Read more »
The 2008 Trends and Threats to Internet security
-- I recently came across the IBM Internet Security Systems X-Force 2008 Mid-Year Trend Statistics report, which outlines issues affecting internet security, including application vulnerabilities, phishing, malware and spam. Read more »
We don't need an eBay for security holes
-- It's been likened to an eBay for hackers -- new security site WabiSabiLabi is a market place for auctioning security vulnerabilities. Read more »
The future remains yesterday
-- Remember when MySQL was blazingly fast and cared little for SQL standards? When MySQL regarded a view as something nice from your window and a trigger was treated as a weaponry component? Those days are set to return with a MySQL fork called Drizzle. Read more »
The Portal of the Future
-- At this year's Gartner Application Development, Integration and Web Services Summit, I attended Gene Phifer talk: "Portal of the Future: What's Beyond Web 2.0?". Read more »
Lets Shindig!
-- At this year's Google Developer Day in Sydney, Dan Peterson and John Hjelmstad talked about Apache Shindig, an open source implementation of OpenSocial and gadgets. Read more »
5 reasons restricting hacking is not like gun control
-- Let's get it out of the way: Guns don't kill people, people with guns kill people. People with hacking tools can steal your personal data, shut down your system and deface your web site -- but is that any reason to ban them? Read more »
Get more out of Safari with Debug mode
-- Safari's debug mode can open up a few nice features like a JavaScript consol and mask Safari as Internet Explorer. Read more »
Breaking inside out
-- Security gets more complicated yet social engineering remains the same threat as ever. Read more »
Application Threat Modeling v2
-- Threat Modeling has become one of the most important ways to increase the security of your application development projects. It allows you to understand the threats you will face, and implement countermeasure in a consistent, reliable way. If you only do one thing to improve yoru development processes, Threat Modeling should be it. Now with the new ACE Threat Modeling methodology and tools, it's easy to do as well! Read more »
Filter Tags
News and features
- Latest
- Popular
- Features
- Most Discussed
-
Sun eye Web developers with Netbeans 6.5
Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »
-
BarCamp buzz: Let the hacking continueAttending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »
-
Adobe briefly considered its own browser
Internet Explorer dominates the Web browser market, but are that many people so in love with it? Meanwhile, the Flash player dominates its segment because lots of people find it to be a terrific. So might Adobe one day decide that the next logical step is to try its hand at building its own Web browser? Read more »
-
Conroy ducks, Ballmer evades and Android Fails -- Club Builder
2008/11/20 10:58:20
-
Yang's resignation: The talk of Silicon Valley
2008/11/19 16:10:33
-
Browser wars: who's the fastest?
2008/11/19 12:10:24
What's on?
-
ZDNet.com.au chases Microsoft CEO Steve Ballmer around Sydney during his recent visit Down Under.