News (162)
Security guru wants access to bug databases
Security expert Ross Anderson has called for empirical research to be conducted into whether open source or closed source software is more secure, and into the impact that development practices such as extreme programming (XP) have on code quality. Read more »
Phillips: Oracle may support rival databases
Oracle may make a decision as early as March on whether to support multiple databases in its "Project Fusion" release, which will combine acquired products with its own applications. Read more »
Software should defend itself: Oracle CSO
Applications will have to defend themselves from attack in the future, according to Oracle's chief security officer Mary Ann Davidson. Read more »
Microsoft readies revamped database, security software
Microsoft says it's set to release near-final versions of its key database server and other business-oriented software. Read more »
Firm offers new tools for database security
Security software developer Guardium is expected to formally announce Monday a new suite of integrated security applications for databases, a market that's gaining traction in the current regulatory environment. Read more »
Oracle 10g release two arrives
This month should see the release of the a more secure version of Oracle's grid database. Read more »
Database flaws more risky than thought
Details of multiple security flaws in Oracle and IBM databases have been released by the security company that found them. Read more »
Patched Oracle database 'still vulnerable'
The latest update for Oracle 10g Release 2 does not plug a hole that allows published attack code to run, according to a security researcher. Read more »
Oracle tool to rein in database admins
Database administrators don't always need access to the information in the databases they're managing, so Oracle has created a tool to protect it. Read more »
New hacker trick may expose Oracle databases
A new attack technique increases the risk of commonly found bugs in Oracle's database software, a security researcher has warned. Read more »
Features (240)
What does a DBA do all day?
Data integrity is a DBA's number one responsibility, but do you know what else they do all day? Read more »
Are open source databases for real?
Free and open-source software is making a splash in the world of databases. But is it reliable enough for your critical applications? Read more »
Do you need an application server?
If you're big on technology trends, you may be considering which application server to put in place. But the first question you should ask is whether you truly need one. Read more »
SQL Server: Design for security from the start
Security in the development of a SQL Server database must be a priority right from the start, beginning with the design process. Familiarise yourself with these guidelines before you start your next project and you will prepare a more secure database application. Read more »
Designing secure intranet applications
During the design phase, engineering and security teams must work together to ensure intranet applications meet the established security standards. Read more »
Six steps to secure sensitive data in MySQL
If you're using MySQL, there are some easy things you can do to secure your systems and significantly reduce the risk of unauthorised access to your sensitive data. Read more »
Secure SQL Server: Installing for security
Securing SQL Server is vital to the design of any database system. Learn how to install SQL securely, protect data, and ensure its validity. Read more »
Web application security frameworks (WASF), Part 1: Introduction
Often you will want parts of your Web application to be exclusive to certain users. This access distinction requires the use of Web application security frameworks. This first article in the series introduces you to the three most often used methods. Read more »
Follow these steps to secure your data layer
A secure data layer is essential for a truly secure application. Learn how to nurture a secure environment for the pivotal Data tier of your application with the correct tools. Read more »
Five steps to designing a secure system with TCB
Security must be a factor in system design from the beginning. It starts with defining the trusted computing base (TCB). Follow these steps to achieve a secure system. Read more »
Blog (8)
The 2008 Trends and Threats to Internet security
-- I recently came across the IBM Internet Security Systems X-Force 2008 Mid-Year Trend Statistics report, which outlines issues affecting internet security, including application vulnerabilities, phishing, malware and spam. Read more »
Google destroys Security Through Obscurity
-- Google Labs' new Code Search makes it easier for hackers to find database
username and password details by entering strings that are commonly used
within configuration files. Read more »
Lets Shindig!
-- At this year's Google Developer Day in Sydney, Dan Peterson and John Hjelmstad talked about Apache Shindig, an open source implementation of OpenSocial and gadgets. Read more »
Oracle's Agile PLM gains popularity
-- I recently spoke to Oracle about their Agile Product Lifecycle Management (PLM) solution, an integrated tool for managing information about a product throughout its lifecycle. Read more »
Salesforce's new AIR toolkit
-- Following the announcement that Salesforce will provide a free toolkit for Adobe Flex and AIR development on its Force.com platform, I spoke to the company’s Doug Farber, the Vice President of Operations, Asia Pacific about its functionality and other issues surrounding the toolkit. Read more »
Is public domain software open-source?
-- When writing earlier this week about Adobe's sponsoring of the SQLite project, I ran into a complicated issue: is software released into the public domain also open-source software? Read more »
Google Gears screenshots
-- Here is a bit of eye candy of the new Google Gears installation and sample code. Read more »
Attack Modeling vs Threat Modeling
-- Traditional Threat Modeling from an adversarial approach is actually Attack Modeling. So what is Threat Modeling then and how does it differ from Attack Modeling? Read more »
Filter Tags
News and features
- Latest
- Popular
- Features
- Most Discussed
-
This blog post covers some of the technologies available for creating applications for the Semantic Web. Read more »
-
Bridging the gap between programmers and the vision
A successful project will have a hard time flying if you don't walk through the game plan before writing a line of code. Read more »
-
Social news start-up Streem shuts downSydney social news start-up Streem will shut down this afternoon, according to a heartfelt notice posted on the site this morning by its founder Elgar Welch. Read more »
-
How to Reset Windows passwords
2008/10/01 14:31:09
-
Five things to consider when choosing a Linux distribution
2008/10/01 15:50:33
-
Cyber-terrorism 'a big threat'
2008/12/01 12:43:32
What's on?
-
Space pr0n, patent karma and Yang out -- Club Builder
On Club Builder this week: how NASA plans to get the Internet into space, Jerry Yang is out the door at Yahoo and Brendan Eich discusses javascript engine competition.