SEARCH RESULTS
 
Showing 1-10 of 1000 records
 
Expand article

Web Services and XML Security Training at OWASP

2008-08-28 08:55:59 by Gunnar Peterson in 1 Raindrop
 
...Web Services and XML Security training at OWASP's AppSec conference in NYC, Sept 22-23. Web services provide the backbone that integrates many things in the enterprise from application servers, databases, ERP, and CRM. Increasingly we are seeing Web services in more B2C roles with Rest, Federation and other technologies. The class looks at...
 
Tags: security, soa security standards, security standards, soa security, soa, security critical environment, information security, information, application security principles
 
 
 
 
Expand article

Target Web Sites Sued for Being Inaccessible to Blind Students

2008-08-28 13:33:49 by Editor in IT Security - The IT Security Industry's Web Resource
 
...web site that couldnt be parsed by his special readerand won, even though no regulations actually exist to control the accessibility of web site content Target has settled a class action lawsuit with the National Federation of the Blind over accessibility complaints with Target.com. Despite the law being unclear as to whether the Americans...
 
Tags: blind, blind students, target, web site, web site content, blind student sued, retailer giant target, sued target, national federation
 
 
 
 
Expand article

SCSU web server becomes spam server and exposes personal information

The Article has images
2008-05-02 11:12:47 by Evan Francen in The Breach Blog
...Web site had been used by hackers to flog fancy wedding rings, Southern Connecticut State University is notifying 11,000 current and former students that their Social Security numbers may have been compromised Reference URL SCSU Alert PCWorld NBC Channel 30 News Chronicle of Higher Education Report Credit Southern Connecticut State...
 
Tags: personal information, information, evan personal information, web server, personal information storage, university, university system, personal, university immediately
 
 
 
 
Expand article

Notes from IEEE Web 2.0 Security and Privacy Workshop (W2SP2008)

2008-05-27 22:45:00 by Security Retentive in Security Retentive
 
...Web 2.0 Security and Privacy Workshop . I figured I'd learn a few things, and also make sure that no new exploits were announced against my employer, and/or make sure we weren't the only examples people gave of problems I was pretty successful on goal #1, not 100% successful on goal #2 This post is mostly brain dump of notes about the talks...
 
Tags: browser, browser security models, browser project, browser security model, security models, browser security, security, web, security challenges
 
 
 
 
Expand article

Web 2.0 Security - The Beginning of the End or The End of the Beginning

The Article has images
2008-05-29 15:26:12 by Gunnar Peterson in 1 Raindrop
...Web 2.0 security. Granted when Web 1.0 was built out did not have the ability to use static analysis to find vulnerabilities, we didn't have good identity standards and so on. So are we at a new a beginning where new tools and mechanisms will save our bacon? Or will Web 2.0 herald some new some 21st century O'leary cow that burns it all to...
 
Tags: people, software security people, software security, software security team, security, security people, web, security support, architecture
 
 
 
 
Expand article

SDL and Web 2.0

2008-02-28 22:26:00 by sdl in The Security Development Lifecycle
 
...Web 2.0 properties. My favorite quote from this column (probably my favorite quote from anyones column so far this year): theres still much to do in the [software] industry to reach a level of truly sustainable computing. This is perhaps especially true in the nascent area of Web 2.0 development. Lets hope Microsoft brings its Trustworthy...
 
Tags: web, site, chriss web site, mashups, web mashups, site cookies, persistent cross-site, cookies, benefit anyones web
 
 
 
 
Expand article

Web 2.0 SecureD. DelivereD. :)

2007-10-13 09:29:44 by RaviC in Musings on Information Security
 
Web 2.0 has become a well accepted jargon in the current marketplace. It is a set of new web based technologies that enable building of on-line communities Web 2.0 is a democracy of user communities [thanks to Paul Graham for his definition]. Web 2.0 gives more power for the users to interact, customize, share and leverage The democratization of...
 
Tags: web, web based technologies, call web, upload personal information, personal information, security, users, security awareness education, ensure users
 
 
 
 
Expand article

Are you using the latest web browser?

The Article has images
2008-07-16 13:24:00 by Panayiotis Mavrommatis in Google Online Security Blog
...web pages - with the intent to misuse them to launch drive-by download attacks - security researchers from ETH Zurich, Google, and IBM Internet Security Systems were interested in looking at the other side of the attack: the web browser. By analyzing the web browser versions seen in visits to Google websites, they have shown that more than...
 
Tags: browser, web browser, browser version, versions, secure versions, obsolete browser, web browser versions, web browser users, web
 
 
 
 
Expand article

Web Server Software and Malware

The Article has images
2007-06-05 09:30:00 by Niels Provos in Google Online Security Blog
...web server software to provide insight into how server software is correlated to servers hosting malware binaries or engaging in drive-by-downloads We determine server operating system by examining the 'Server:' HTTP header reported by most web servers. A survey of servers running roughly 80 million domain names reveals the web server...
 
Tags: servers serve malware, servers, apache servers, malicious servers, web server software, server software, web servers, microsoft iis, microsoft iis features