| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Apache
|
|
IIS
|
|
Web Proxy
|
|
Document Security in Web Applications Organizations publish information online including confidential data. Data is rendered in varied formats; it can vary from simple HTML pages to documents in Adobe's PDF or Microsoft's Word/Excel formats. Confidential data is restricted to a set of users who have to login and be authenticated on the website. A common example of such a situation is an online banking system, wherein the personal statements of a customer are made available in a PDF file. These files contain sensitive information and as such they must not be made available to any other user. Mechanisms to protect data rendered as HTML are well established, the same thing does not hold good for document protection.
Andres Desa,
03/21/2005
|
|
Designing and Implementing Secure Web Services This paper presents the key issues associated with designing and deploying highly secure applications for corporate customers over standard web protocols and proposes a number of practical solutions for dealing with these issues.
Steve Purser,
03/02/2005
|
|
The Risk of Application Attacks Securing Web Applications According to statistics from CERT (an independent body specializing in information security), the number of successful, that is to say declared, attacks continues to grow: up 60% in 2002, and expected to grow around 80% in 2003. A simple reading of these numbers shows that protection mechanisms deployed by companies are not discouraging attempts by hackers. Far from it.
By Bee Ware, 01/07/2005
|
|
Programming: The Heart of Web Security Information and data transmission system security holds a place of ever-growing importance in today’s world. The expansion of the Web has provided businesses with an ideal platform for introducing and promoting their products and services. The range of possibilities open to hackers is expanding to the point that certain business fundamentals, in particular confidentiality and integrity, are being challenged. Let us now review the reasons why such security problems have arisen, the stakes involved, and some examples of possible security flaws.
By Johan Brissaud, 01/05/2005
|
|
Are your web applications vulnerable? Web Applications can take many forms — an informational website, an e-commerce website, an extranet, an intranet, an exchange, a search engine, a transaction engine, an e-business. All of these applications are linked to computer systems that contain weaknesses that can pose risks to a company. Weaknesses exist in system architecture, system configuration, application design, implementation configuration, and operations. The risks include the possibility of incorrect calculations, damaged hardware and software, data accessed by unauthorized users, data theft or loss, misuse of the system, and disrupted business operations.
By Caleb Sima, 10/28/2004
|
|
Are Secure Internet Transactions Really Secure? This paper looks at the problem of determining if a secure transaction on the internet is really secure or not. When a customer is about to submit their private information and credit card details to a merchant, typically they look for the solid lock or key on their browser to tell them that the transaction is secure. However, that is not the whole story. There are other factors that come into play when determining if this transaction is secure or not. This paper examines those issues.
By Stephen M. Mencik, 05/18/2004
|
|
Security Strengths and Weaknesses of Two Popular Web Servers As the mediator between your business and the world the Web Server that you choose must be completely sound in regards to security. You do have many options when choosing which Web Server package you will use to transmit your company's on-line presence to the rest of the world. There are two Web Server packages in particular that dominate the market for Web Servers. These two Web Server packages are Microsoft's Internet Information Server, and Apache.
By Brad Bell, 05/11/2004
|
|
Proactively Guarding Against Unknown Web Server Attacks While applying security hot-fixes in a timely fashion is recommended, there is always the chance of being attacked through a newly discovered vulnerability before it can be identified and patched. The premise of this paper is to review various ways of protecting web servers from unknown attacks over port 80. We’ll examine the technology, explain why it is effective, and identify areas where further diligence is required.
By William Geiger, 05/11/2004
|
|
Using Open Source Software to Proxy, Authenticate, and Monitor User Web Habits This paper will attempt to address what time and again is a problem for network and security administrators: monitoring user access to the Internet in an environment where blocking resources may not be ideal, cost effective, or in accordance with company policy.
By Jason D. Gregg, 05/11/2004
|
|
Securing Microsoft Web Applications - A Guide for Systems Administrators The purpose of this paper is to provide systems administrators with a high-level overview of some of the major security considerations surrounding web applications that utilize Microsoft's Internet Information Server, SQL Server and Component Object Model (COM+), as well as links to in-depth technical information that expands upon the high-level topics discussed here.
By Matt Pogue, 05/11/2004
|
|
Page: 1 2345 |
