|
Written by Ben Walther
|
Upcoming Speaking Events:
Paco Hope |
|
Last Updated on Tuesday, 02 December 2008 10:40 |
|
|
Written by Ben Walther
|
- Karen Johnson, on her blog, Testing Reflections, was the first one to comment on the book. She had a head start, as a reviewer.
- Cigital, Paco and Ben's employer, issued this press release.
|
|
Last Updated on Wednesday, 05 November 2008 17:56 |
|
Software Security Market Growth |
 |
 |
 |
|
Written by Paco Hope
|
Gary McGraw is optimistic about the growth of the software security field over the last few years. Things are certainly moving in the right direction (toward white box analysis, out of the myopic focus on Web apps, and toward full-lifecycle programs based on the touchpoints). The numbers show this growth and these trends objectively. He writes about the numbers in this month’s informIT article.
I am encouraged that the field continues to thrive even in the face of the recession we’re in. |
|
|
J2EE Community Creates HDIV Framework |
|
|
|
|
Written by Paco Hope
|
The Java EE community has been talking about a new open source framework called HDIV (HTTP data integrity validator) that is used to help protect web apps. The framework is used to provide: data integrity, data confidentiality, generic validation, random tokens (to prevent CSRF), and monitorization. HDIV is designed to work with popular Java web-app frameworks like Struts 1, Struts 2, Spring MVC, JSF and MyFaces. Roberto Velasco and Gorka Vicente are the original founders of the project.
There's no silver bullet, but this a step in the right direction. You can read more about HDIV at the following links:
|
|
|
<< Start < Prev 1 2 Next > End >>
|
|
Page 2 of 2 |
