WHITE PAPER - No single technology guarantees security, however application whitelisting covers situations not addressed by firewalls or anti-virus utilities. This paper focuses on how application whitelisting can be effectively used as an important layer in your security scenario.
Posted: November 20, 2009 | Published: November 16, 2009


Topics:  Anti-Spyware Software | Application Security | Intrusion Prevention | Malware | Security | Security Management | Security Threats | Virus Protection

VIDEO - Fixing software security vulnerabilities during development is expensive, difficult and time-consuming. But fixing them after deployment is far more expensive and counterproductive. In this video featuring security expert Diana Kelley, learn state-of-the-art techniques for building a secure software development process.
Posted: November 19, 2009 | Premiered: November 19, 2009


Topics:  Application Deployment | Application Development | Application Security | Security | Security Best Practices | Security Threats

PODCAST - Building security into the software development lifecycle takes more than just a plan. You need the support of both the development and security/audit organizations to make it work. This podcast, featuring Diana Kelley, presents a plan for selling the value of security to all of the constituencies who matter in your organization.
Posted: November 19, 2009 | Premiered: November 19, 2009


Topics:  Application Deployment | Application Development | Application Security | Security | Security Best Practices | Security Threats

WHITE PAPER - Authentication to a SharePoint environment is the process in which a firm's architecture approves a user's credentials; most commonly a Windows-based authentication. This whitepaper will discuss the finer points and give a greater understanding of securable objects, permissions, permission levels, and access scenarios.
Posted: November 18, 2009 | Published: November 18, 2009


Topics:  Access Control | Application Security | Authentication | Collaborative Applications Software | Microsoft Office | Office Applications Software

WHITE PAPER - This white paper outlines considerations and recommendations for reducing business risk by ensuring that your web applications are secure.
Posted: November 16, 2009 | Published: November 9, 2009


Topics:  Application Life-Cycle Management | Application Security | Risk Assessment | Risk Management | Security | Security Infrastructure | Security Management | Security Standards

WHITE PAPER - The most common approach to securing a web application involves doing a single security test, usually a Web Application Security Assessment, when a development project is completed. While this is still a requirement, this paper discusses why security needs to be incorporated earlier and throughout the software development life cycle (SDLC).
Posted: November 16, 2009 | Published: November 9, 2009


Topics:  Application Security | Security | Security Infrastructure | Security Management | Security Standards | Web Application Security

PODCAST - Bill Crowell, former Deputy Director of the NSA, is interviewed in this podcast. He talks extensively about insider threats, shares some stories from the trenches, and discusses the nature of cybercrime. Bill also covers the importance of sensitive data protection –- especially around mission-critical applications and databases.
Posted: November 12, 2009 | Premiered: November 12, 2009


Topics:  Application Security | Cybersecurity | Database Security | Hackers | Risk Management | Security | Security Threats | Vulnerability Assessments

PODCAST - Web Application Security Podcast featuring Paul Kaspian. This PodCast touches on how to meet application security compliance deadlines.
Posted: November 10, 2009 | Premiered: November 10, 2009


Topics:  Application Security | Applications Management | Compliance (Finance) | Compliance Software | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Vulnerability Assessments

ASSESSMENT TOOL - Download Rational® AppScan® Standard Edition V7.9, previously known as Watchfire AppScan, a leading Web application security testing tool that automates vulnerability assessments and scans and tests for all common Web application vulnerabilities including SQL-injection, cross-site scripting, and buffer overflow.
Posted: November 3, 2009 | Published: November 3, 2009


Topics:  Application Security | SQL | Vulnerability Assessments | Web Application Security | Web Applications Management | Web Authoring Tools

RESOURCE CENTER - Check out this e-Kit for comprehensive information related to web application security strategies and web application security testing through SaaS. Included are several white papers, demos, and podcasts.
Posted: November 3, 2009 | Published: November 3, 2009


Topics:  Application Security | Applications Management | Payment Card Industry Data Security Standard Compliance | Software as a Service | Software Testing | Testing | Web Application Security | Web Applications Management

WEBCAST - Join IBM for a one-hour presentation which introduces a new technique that combines IBM Rational AppScan & ISS technologies that scan to identify unwanted, embedded malware.
Posted: November 3, 2009 | Premiered: July 16, 2009


Topics:  Application Development | Application Security | Internet Security | Internet Security Software | Malware | Security Management | Security Systems | Security Threats

WHITE PAPER - When web application delivery is implemented in a collaborative, re-peatable, and process-oriented manner, companies can benefit from more efficient development models and more secure applications. Read this white paper to learn more.
Posted: November 3, 2009 | Published: July 8, 2009


Topics:  Application Development | Application Life-Cycle Management | Application Security | Risk Management | Security Audits | Web Application Security | Web Applications Management

WHITE PAPER - The purpose of this whitepaper is to describe best practices for securing IBM System i/i-Series/AS400 systems and detail the AS400 monitoring service provided by SecureWorks.
Posted: November 3, 2009 | Published: November 2, 2009


Topics:  Application Security | Data Security | Database Administration | Database Security | Network Security | Security | Security Event Management | Security Software | Security Spending

PRESENTATION TRANSCRIPT - This transcript provides a complete overview of application lifecycle management (ALM) and discusses how SAP's integrated and open approach to ALM can accelerate innovation, ensure business continuity, reduce risk and lower TCO.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Application Life-Cycle Management | Application Life-Cycle Management Software | Application Monitoring | Application Security | Business Continuity Planning | Continuous Data Protection | SAP (Product) | Secure Application Development | Software Implementation | Software Quality Assurance | TCO

PRESENTATION - This collection of slides from the Diana Kelley presents an overview of software security best practices. There is a heavy emphasis on PCI DSS requirement 6 -- “Develop and maintain secure systems and applications”. Some important subsections are highlighted and explained in detail.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Application Security | Compliance (Systems Operations) | Compliance Best Practices | Compliance Software | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Secure Application Development | Security | Security Software