SecurityRatty: tag: application

The Future Of Application And Database Security: Part 2, Browser To WAF/Gateway

2008-06-27 20:12:42 by rmogull in securosis.com

...application gateways. These are the first two components of Application and Database Monitoring and Protection (ADMP), which I define as Products that monitor all activity in a business application and database, identify and audit users and content, and, based on central policies, protect data based on content, context, and/or activity...

Tags: application, application controls, application performance, web application gatewaywaf, application security services, business application, application activity, web application gateway, web browsers wafs

Application Due Care

2008-02-18 08:55:12 by RaviC in Musings on Information Security

...application is truly built secure inside-out, then there is no need for other security layers". Truly secure application is a far fetched statement 1. What is the application made of? - Complexity 2. How was the application built? - Methodology 3. Where does the application run? - Environment 1. Complexity - Applications are developed using...

Tags: application, application due care, development methodology, methodology, application runs, application exist, application security, development, secure application

Web Application Security: We Need Web Application Firewalls To Work. Better.

2008-06-02 16:46:41 by rmogull in securosis.com

...application security. Jeremiah and I have talked a few times about the future of web application security, and we both agree that many current approaches just wont solve the problem. Its increasingly clear that no matter how good we are at secure programming (SDLC) , and now matter how effective our code scanning and vulnerability analysis...

Tags: application, web application security, web application, web application firewall, web-application specific companies, security, web application world, vulnerability, specific vulnerability

Web Application Security: We Need Web Application Firewalls To Work. Better.

2008-06-02 16:46:41 by rmogull in securosis.com

...application security. Jeremiah and I have talked a few times about the future of web application security, and we both agree that many current approaches just cant solve the problem. Its increasingly clear that no matter how good we are at secure programming (SDLC) , and no matter how effective our code scanning and vulnerability analysis...

Tags: application, web application security, web application, web application firewall, web-application specific companies, security, web application world, vulnerability, specific vulnerability

Automating web application security testing

2007-07-16 11:40:00 by Panayiotis Mavrommatis in Google Online Security Blog

...applications. An attacker can inject malicious scripts to perform unauthorized actions in the context of the victim's web session. Any web application that serves documents that include data from untrusted sources could be vulnerable to XSS if the untrusted data is not appropriately sanitized. A web application that is vulnerable to XSS can...

Tags: web application, application, input, input parameters, accepts user input, xss, xss vulnerabilities, security, security team check

Application delivery controllers: Moving toward the application-centric network

2008-03-26 00:00:00 by Robin Layland in WhatIs: Enterprise IT tips and expert advice

...application centric. The data center has continued to evolve and so have the requirements placed on the network. The network must be able to route application traffic based on the information within the URL or even details within the application data. It is not enough to monitor an application; now, if a particular transaction within an...

Tags: application, application delivery controllers, application switch, application front, application data, network, next-generation slbs, application centric, slbs

The Future Of Application And Database Security: Part 1, Setting The Stage

2008-06-25 21:37:13 by rmogull in securosis.com

...application and database security. Heck, I even hired one of them . During some of my presentations I laid out my vision for where I believe application (especially web application) and database security are headed. Ive hinted at it here on the blog, discussing the concepts of ADMP, the information-centric security lifecycle, and DAM, but its...

Tags: business operations, business operations online, application, business, bad guys attack, bad guys, tools, todays tools fit, code

The Future Of Application And Database Security: Part 1, Setting The Stage

2008-06-25 21:37:13 by rmogull in securosis.com

...application and database security. Heck, I even hired one of them . During some of my presentations I laid out my vision for where I believe application (especially web application) and database security are headed. Ive hinted at it here on the blog, discussing the concepts of ADMP, the information-centric security lifecycle, and DAM, but its...

Tags: application, bad guys attack, bad guys, tools, todays tools fit, code, insecure code, web application servers, database security

Getting vulnerabilities in the application fixed

2007-10-27 13:20:07 by RaviC in Musings on Information Security

...application Let us accept the fact that developers are mostly busy focusing their time and effort on the functionality of application. Most of the time the software development manager gets away by using the busy excuse. One approach that I suggest you could is to rank the vulnerabilities based on "severity" (how bad if the vulnerability is...

Tags: vulnerabilities, software development manager, vulnerabilities based, risk acceptance form, risk, severitythreat vulnerabilities, form, form acknowledge, application

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo