Security

Building security requirements into software: Mobile apps, Web services and the cloud

Organizations are more concerned about application security than ever and have a growing awareness of security concerns. SearchSoftwareQuality.com’s newest expert, Dan Cornell, principal of software consulting company Denim Group,...

Both network and application security are important

When people think of security testing, they often think about the network layer -- that area outside of the application. However, application security -- security within your application -- is important as well. John Overbaugh explains the difference in his two recent tips. In

Security scanning on both sides of the firewall

Recently, WhiteHat Security announced Sentinel PL (PreLaunch), a service for website security testing done before an application is released to production. Senior Analyst from the 451 Group Wendy Nather says:

With Sentinel PL, WhiteHat is addressing the growing need to move...

How secure are your mobile and embedded applications?

A wide array of security tools are available to handle threats that are prevalent over the desktop and server-centric code running in untrusted environments. But what about the newer mobile devices? Applications are being downloaded by the billions by consumers and these applications may be at...

Apple surpasses Oracle in security breaches

According to recent article on Wired.com, Apple has become the new reigning champ and is once again making headlines. No, not because it is outselling PC products (which it is) and not just because...

Without “standardization,” is cloud-based application security up in the air?

Fortify software, a security test and assessment service provider, now offers security testing and assessment for cloud-destined applications. Fortify 360 and...

What’s going on with Google’s social network testing?

Headline: "Google admits buzz social network testing flaws."   The same head was covered on

Fix expensive Web security weaknesses at a lower cost

Fortify's new Fortify on Demand service offers penetration and static testing...

Security flaws and Agile boom top software quality news in 2008

Security vulnerabilities and the boom in Agile development adoption topped the SearchSoftwareQuality.com news charts in 2008. Here’s a rundown of the five most-read news articles and their significance. Three of the top five articles focus on Agile development. In the #1 story,

Security boost for LAMP stack

LAMP, an open-source Web development platform based on Linux, Apache, MySQL, and PHP, is getting some added protection from attacks thanks to Metaforic.

Metaforic, a provider of anti-tamper solutions, announced that upon request it will provide free...