 |
|
Defense in Depth: How Application Whitelisting Can Increase Your Desktop Security
sponsored by Faronics
 | White Paper: | Posted: 20 Nov 2009
| | Published: | 16 Nov 2009 | |
Summary: |
No single technology guarantees security, however application whitelisting covers situations not addressed by firewalls or anti-virus utilities. This paper focuses on how application whitelisting can be effectively used as an important layer in your security scenario.
| 
|
 |
|
|
Software Reliability: Building Security In
sponsored by Ounce Labs, an IBM Company
 | Video: | Posted: 19 Nov 2009
| | Premiered: | 19 Nov 2009 | |
Summary: |
Fixing software security vulnerabilities during development is expensive, difficult and time-consuming. But fixing them after deployment is far more expensive and counterproductive. In this video featuring security expert Diana Kelley, learn state-of-the-art techniques for building a secure software development process.
|
|
 |
|
|
Countdown: Selling security in the SDLC - Expert Podcast
sponsored by Ounce Labs, an IBM Company
 | Podcast: | Posted: 19 Nov 2009
| | Premiered: | 19 Nov 2009 | | | Speaker: |
Diana Kelley, Partner, SecurityCurve
|
| |
Summary: |
Building security into the software development lifecycle takes more than just a plan. You need the support of both the development and security/audit organizations to make it work. This podcast, featuring Diana Kelley, presents a plan for selling the value of security to all of the constituencies who matter in your organization.
|
|
|
|
|
Understanding and Simplifying SharePoint 2007 Permissions Management
sponsored by Metalogix
| White Paper: | Posted: 18 Nov 2009
| | Published: | 18 Nov 2009 | |
Summary: |
Authentication to a SharePoint environment is the process in which a firm's architecture approves a user's credentials; most commonly a Windows-based authentication. This whitepaper will discuss the finer points and give a greater understanding of securable objects, permissions, permission levels, and access scenarios.
|
|
 |
|
|
Mapping Application Security To Business Value: Considerations And Recommendations For IT And Business Decision Makers
sponsored by Redspin, Inc.
| White Paper: | Posted: 16 Nov 2009
| | Published: | 09 Nov 2009 | |
Summary: |
This white paper outlines considerations and recommendations for reducing business risk by ensuring that your web applications are secure.
|
|
 |
|
|
What Executives Need to Know About Web Application Development Security
sponsored by Redspin, Inc.
| White Paper: | Posted: 16 Nov 2009
| | Published: | 09 Nov 2009 | |
Summary: |
The most common approach to securing a web application involves doing a single security test, usually a Web Application Security Assessment, when a development project is completed. While this is still a requirement, this paper discusses why security needs to be incorporated earlier and throughout the software development life cycle (SDLC).
|
|
|
|
|
Podcast: Insider Threats - an Interview with the Former Deputy Director of the National Security Agency - NSA
sponsored by Imperva
| Podcast: | Posted: 12 Nov 2009
| | Premiered: | 12 Nov 2009 | |
Summary: |
Bill Crowell, former Deputy Director of the NSA, is interviewed in this podcast. He talks extensively about insider threats, shares some stories from the trenches, and discusses the nature of cybercrime. Bill also covers the importance of sensitive data protection –- especially around mission-critical applications and databases.
|
|
 |
|
|
Rational AppScan Podcast
sponsored by IBM
| Podcast: | Posted: 10 Nov 2009
| | Premiered: | 10 Nov 2009 | |
Summary: |
Web Application Security Podcast featuring Paul Kaspian. This PodCast touches on how to meet application security compliance deadlines.
|
|
 |
|
|
Try Rational AppScan
sponsored by IBM
| Assessment Tool: | Posted: 03 Nov 2009
| | Published: | 03 Nov 2009 | |
Summary: |
Download Rational® AppScan® Standard Edition V7.9, previously known as Watchfire AppScan, a leading Web application security testing tool that automates vulnerability assessments and scans and tests for all common Web application vulnerabilities including SQL-injection, cross-site scripting, and buffer overflow.
|
|
|
|
|
e-Kit: Web Application Security eKit
sponsored by IBM
| Resource Center: | Posted: 03 Nov 2009
| | Published: | 03 Nov 2009 | |
Summary: |
Check out this e-Kit for comprehensive information related to web application security strategies and web application security testing through SaaS. Included are several white papers, demos, and podcasts.
|
|
|
|
|
Webcast -- Malware: It’s Everywhere
sponsored by IBM
 | Webcast: | Posted: 03 Nov 2009
| | Premiered: | Available On Demand | |
Summary: |
Join IBM for a one-hour presentation which introduces a new technique that combines IBM Rational AppScan & ISS technologies that scan to identify unwanted, embedded malware.
|
|
|
|
|
Analyst Whitepaper: Practical Approaches for Securing Web Applications Across the Software Delivery Lifecycle
sponsored by IBM
| White Paper: | Posted: 03 Nov 2009
| | Published: | 08 Jul 2009 | |
Summary: |
When web application delivery is implemented in a collaborative, re-peatable, and process-oriented manner, companies can benefit from more efficient development models and more secure applications. Read this white paper to learn more.
|
|
|
|
|
Security Event Monitoring for IBM System i/i-series/AS400 Systems
sponsored by SecureWorks
| White Paper: | Posted: 03 Nov 2009
| | Published: | 02 Nov 2009 | |
Summary: |
The purpose of this whitepaper is to describe best practices for securing IBM System i/i-Series/AS400 systems and detail the AS400 monitoring service provided by SecureWorks.
|
|
 |
|
|
Presentation Transcript: Optimize Business and IT with New Generation Application Lifecycle
sponsored by SAP Community Network
| Presentation Transcript: | Posted: 26 Oct 2009
| | Published: | 26 Oct 2009 | |
Summary: |
This transcript provides a complete overview of application lifecycle management (ALM) and discusses how SAP's integrated and open approach to ALM can accelerate innovation, ensure business continuity, reduce risk and lower TCO.
|
|
 |
|
|
Software Security for Compliance, PCI, and Beyond
sponsored by SearchSecurity.com
| Presentation: | Posted: 26 Oct 2009
| | Published: | 26 Oct 2009 | |
Summary: |
This collection of slides from the Diana Kelley presents an overview of software security best practices. There is a heavy emphasis on PCI DSS requirement 6 -- “Develop and maintain secure systems and applications”. Some important subsections are highlighted and explained in detail.
|
|
 |
|
MORE SPECIFIC TOPICS:
Virtualization Security |
Windows Security