Tags: application, secure
News (541)
Firm offers new tools for database security
Security software developer Guardium is expected to formally announce Monday a new suite of integrated security applications for databases, a market that's gaining traction in the current regulatory environment. Read more »
Is Microsoft outsmarting Symbian with mobile security?
Microsoft's operating system for 'smart phones', the Windows Mobile Phone Edition, is more secure and more efficient than the Symbian platform, which could help the Redmond giant take control of the enterprise smart phone market. Read more »
RAMP up to secure Web services
A proposal for secure messaging is to go before the WS-I in Utah this week. Read more »
Microsoft's leaner approach to Vista security
Microsoft is talking up support for hardware-based security in Windows Vista, though only a sliver of the company's original plan will make it into the operating system. Read more »
Image flaw pierces PC security
Six vulnerabilities in a common code that handles an open-source image format could allow intruders to compromise computers running Linux and may allow attacks against Windows PCs as well as Macs running OS X. Read more »
Latest MyDoom worm exploits Web site guestbooks
A new variant of the MyDoom worm discovered on Tuesday downloads malware from an MP3-downloading site and a personal Web site, according to security experts, who claim that hackers have compromised these sites by exploiting scripting vulnerabilities in their guestbooks. Read more »
Microsoft warns of 22 new security flaws
Microsoft on Tuesday published 10 software security advisories, warning Windows users and corporate administrators of 22 new flaws that affect the company's products. Read more »
Microsoft gears up Web apps for big business
Microsoft detailed on Tuesday its road map and pricing for Web-based software suites built for big companies and growing businesses. Read more »
Microsoft releases 'critical' patches
Microsoft released a higher-than-usual number of monthly updates, more than half of which were given the software company's highest rating of "critical." Read more »
Microsoft bug-checking tools promise fewer crashes
Microsoft is readying two tools to help hardware makers create more stable and secure Windows drivers, which should help reduce the number of crashes. Read more »
Features (460)
Web application security frameworks (WASF), Part 1: Introduction
Often you will want parts of your Web application to be exclusive to certain users. This access distinction requires the use of Web application security frameworks. This first article in the series introduces you to the three most often used methods. Read more »
Develop secure software at the application level
Protect your application from input overflow and underflow attacks, and from other common tactics with these development techniques. Read more »
How to build secure ASP.NET applications
ASP.NET provides several ways to protect your Web-based app from attack. Here's an overview of authentication, authorisation, and role-based security. Read more »
Designing secure intranet applications
During the design phase, engineering and security teams must work together to ensure intranet applications meet the established security standards. Read more »
Develop applications that prevent intrusion
Designing secure applications requires developers to look beyond their own code. Accessing APIs or COM objects or establishing system privileges can result in security vulnerabilities that can be prevented. Read more »
Ask Chuck: ASP.NET best security practices
What best practices should you follow for an ASP.NET application? Our resident .NET expert Charles Sterling offers this quick tip. Read more »
SQL Server: Design for security from the start
Security in the development of a SQL Server database must be a priority right from the start, beginning with the design process. Familiarise yourself with these guidelines before you start your next project and you will prepare a more secure database application. Read more »
Follow these steps to secure your data layer
A secure data layer is essential for a truly secure application. Learn how to nurture a secure environment for the pivotal Data tier of your application with the correct tools. Read more »
Who is responsible for security?
A flurry of worm and viral activity on the Internet raises a question more important than who to blame: What do we do about it? Read more »
Add security to applications by using JAAS
Java Authentication and Authorization Service (JAAS) provides the ability to implement the two things that any decent security system needs: authentication and authorisation. See how JAAS may save you time and effort the next time you need to add security to your Java app. Read more »
Video (4)
Avoiding security risks with AIR
Being a native application, AIR needs far more security than a typical Flash application. Mike Downey, principal evangelist, Adobe, discusses the extra steps Adobe had to take with AIR. Read more »
Charney: App vendors are the weakest security link
Microsoft now builds security into products such as Vista but attackers have shifted their focus to applications so software vendors are the weakest link, says the VP of Microsoft's Trustworthy Computing Group. Read more »
RSA 2008: Microsoft outlines Internet security strategy
At the RSA 2008 conference in San Francisco, Microsoft Research and Strategy Officer Craig Mundie describes a new plan for Internet security that includes the creation of a trusted stack. Each element can be authenticated, from the operating system to applications, people, and data. Read more »
Charney: Customers the biggest hole in Microsoft's security
Microsoft customers need to better authenticate applications they install on their PCs, so the next challenge for Microsoft is to figure out how to provide that information, according to Scott Charney, the VP of Microsoft's Trustworthy Computing Group. Read more »
Blog (23)
Application Threat Modeling v2
-- Threat Modeling has become one of the most important ways to increase the security of your application development projects. It allows you to understand the threats you will face, and implement countermeasure in a consistent, reliable way. If you only do one thing to improve yoru development processes, Threat Modeling should be it. Now with the new ACE Threat Modeling methodology and tools, it's easy to do as well! Read more »
Firefox 3 add-ons to make you a better Web developer
-- Firefox might be a fast browser but it's extensions can transform it into a powerful development tool for Web developers and designers. Here are 10 of the best to get you started. Read more »
Windows XP's last hurrah
-- The mere fact that Microsoft will stop widespread sale of Windows XP at the end of the day has been a topic here and elsewhere for months. The most immediate question is, with Windows XP moving off the stage, just where is Windows Vista? Read more »
The Portal of the Future
-- At this year's Gartner Application Development, Integration and Web Services Summit, I attended Gene Phifer talk: "Portal of the Future: What's Beyond Web 2.0?". Read more »
Are your Web apps ready for the next-gen browser war?
-- Webkit, Firefox, and Internet Explorer are all scheduled to update their browsers in 2008. Are you ready for Web dev test fest 08? Read more »
Google to allow third party code in Gmail?
-- According to executives from the company, Google are preparing to open Gmail to developers outside the Googleplex labs. Read more »
Salesforce's new AIR toolkit
-- Following the announcement that Salesforce will provide a free toolkit for Adobe Flex and AIR development on its Force.com platform, I spoke to the company’s Doug Farber, the Vice President of Operations, Asia Pacific about its functionality and other issues surrounding the toolkit. Read more »
Still many questions about software for mobile computers
-- The great thing about the development of future mobile computers is that no one school of thought has come to dominate the territory. Of course, that's also a problem. Read more »
Nokia starts trolling
-- This week Builder AU is on the road at linux.conf.au 2008 in Melbourne -- but before we get into all that is happening here, there is the small matter of Trolltech. Read more »
Internet Exploder
-- Most developers knew this day would come-- a new version of Internet Explorer comes around and suddenly, the web application you have spent months crafting falls into a heap. No wonder people call it "Internet Exploder". Read more »
Filter Tags
News and features
- Latest
- Popular
- Features
- Most Discussed
-
Share a keyboard and mouse with Synergy
Even in the era of virtualization, many IT pros (including myself) have a small army of computers sitting on, under, and around their desks. Read more »
-
Android devs less than gruntled
Yet more discouraging news on the Android front. Having hacked off its developer community by releasing updated SDKs to just a small group of chosen devs, Google has now given the brush-off to a petition that called for more to be given to the wider community. Read more »
-
As a developer there will be a time when you ship a bug -- be it a stub that you left in, or a flaming, crashtastic segfault. The next time this happens and your bosses come baying for blood, point them in the direction of VMware, who this week gave the developer world a great example of how to ship a showstopper bug. Read more »
-
Ivar Jacobson, Bill Gates and the weekly poultry -- Club Builder
2008/08/20 16:36:22
-
Wii remote creates $50 digital whiteboard: IDF
2008/08/20 10:42:43
-
2008/08/18 13:05:17
What's on?
-
Club Builder: Captain Obvious vs the Crackpots
In the case of the bleeding obvious, IBM says open source needs good designers; a claim is made that China can activate your phone to snoop on you; and we take a look at the Defcon conference.
