Securing Web Applications: Tips and Techniques Articles
Web applications are prime targets for attackers and developers are expected to develop applications with security high on the requirements list. Over the past years we have accumulated a number of articles that describe tips and techniques for improving application security. Here are some of the most relevant:
From The Essentials Series: Messaging and Web Security - Volume I:
- Article 12. IT Audits: What to Expect
- Article 16. Web Application Testing
- Article 17. Web Services Security
From The Essentials Series: Messaging and Web Security - Volume II:
- Article 1: Challenges in Identity and Access Management
- Article 7: Measuring Security: Application Metrics
- Article 8: 5 Things to Know About SQL Injection Attacks
- Article 10: Security and Service-Oriented Architectures
- Article 11: Multiple Layers of Database Security
- Article 15: 10 Tips for Securing MySQL Database
- Article 18: Web Developers Guide to Avoiding Cross Site Scripting Attacks
- Article 25: Basics of Database Auditing
- Article 26: 5 Security Considerations with Portals
- Article 27: Role of Code Reviews in Application Security
And from our latest set of articles in The Essentials Series: Messaging and Web Security - Volume III:
- Article 3: End User Security: The Weakest Link
- Article 5: Third-Party Database Tools
- Article 7: OpenID: Pros and Cons
- Article 9: Ajax Security Overview: Problems and Solutions
- Article 16: Database Security and Inference
The breadth of these article is a good indication of the complexity of application security and there are topics we haven't even addressed yet but we will get to as many as we can in the future.
Email This!
Digg it!
Sphere it!
Del.icio.us
Reddit!
Newsvine
