Search Results for "web security"

The protection of your site against hackers is one of the most difficult tasks for a modern administrator. The Web Security Handbook is a must-have for the people that need their sites to be as safe as possible. Once with the very quick development of Internet and information-sharing mechanisms that use it, the flow of information is becoming harder and harder to secure and to control. So, nowadays the skills of controlling and securing the access to information have a key-role in the overall development of the Internet. This book is oriented

No matter its better or worse, the web has perhaps become the correspondent of an enormous public agency. It becomes the warehouse for customer information and services of the nearly all sensitive and vital character, ranging from medicinal records to monetary funds. Internet based services are basically a replacement to conventional desktop software at a blinding speed, captivating over TB (terabytes) of individual information in the procedure. Limitless emails store capacity and Web 2.0-method beginning will speed up that inclination

Atelier Web Security Port Scanner (AWSPS) is a first-line weapon against network perils being used worldwide by thousands of security-conscious corporations, official state departments and consulting companies. With the Internet offering more and more opportunities for intrusion and distribution of malicious code, traditional security software (vulnerabilities scanners and trojan scanners) require almost daily updates to identify and sustain the invasion and are quasi-hopeless when dealing with unrevealed perils. Companies and individuals are

WS-SecurityWS-Security (Web Services Security) is a proposed IT industry standard that addresses security when data is exchanged as part of a Web service. WS-Security is one of a series of specifications from an industry group that includes IBM, Microsoft, and Verisign. Related specifications include the Business Process Execution Language (BPEL), WS-Coordination, and WS-Transaction. WS-Security specifies enhancements to SOAP (Simple Object Access Protocol) messaging aimed at protecting the integrity and confidentiality of a message and

If you want to keep up with the latest in web application security, you might want to add Planet Web Security to your reading list. In his announcement, Christian Matthies offers this brief description: I am pleased to announce the launch of Planet Web Security, founded with the intention to bring together similarly themed news and rants related to web security and to display them in one place. It's still in its infancy, so I'm sure it will only get better as more relevant blogs are added. Comparing it to my own planet (not specific to web

Security online is a vast field that is being worked on by a number of organizations, including W3C. Mapping the entire field would be a huge endeavor; hence, this page focuses on work that W3C is involved in. The traditional W3C Security Resources page is no longer maintained, but remains online for archival purposes. Web Security Context Working Group The Web Security Context Working Group (part of the Security Activity) is chartered to specify a baseline set of security context information that should be accessible to Web users, and practices

As more and more attacks are being carried out over the HTTP layer there is a growing need to push the envelope and bring Web security to new levels. Most existing tools work on the TCP/IP level, failing to use the specifics of the HTTP protocol in their operation. The need for increased security has lead to the creation of application gateways, tools that are essentially reverse proxies with the added capability of protocol analysis. Many commercial solutions are available. This article will demonstrate how you can build your own application gateway

Web Application Security Consortium The Web Application Security Consortium (WASC) is an international group of experts, industry practitioners, and organizational representatives who produce open source and widely agreed upon best-practice security standards for the World Wide Web. As an active community, WASC facilitates the exchange of ideas and organizes several industry projects. WASC consistently releases technical information, contributed articles, security guidelines, and other useful documentation. Businesses, educational institutions,