Application Security
CIO Decisions magazine
LEAD STORY
Top Web application security threats for 2007

Web application threats increased significantly in 2006, and they aren't expected to let up in next year. SPI Dynamics identifies which trends will be security concerns in 2007. (ARTICLE)


More on Threats
TOPICS
FUNDAMENTALS  

Application security in 2007: What you need to know: Application security will face a host of increasingly sophisticated exploits in 2007 . Amir Peles urges security managers to understand and prepare for these complex attacks. (TIP)
Sorting out black box, white box and gray box testing (EXPERT ANSWER)
Web application security for small businesses (ARTICLE)
TOOLS/TECHNOLOGIES  

Sorting out black box, white box and gray box testing: I'm having trouble sorting out what is black box testing, what is clear box testing, white box testing and gray box testing. (EXPERT ANSWER)
Web application security for small businesses (ARTICLE)
Vulnerability scanners: The automation option (EXPERT ANSWER)
ENTERPRISE JAVA  

Application threats: CSRF, injections, & cookie replay: Web application exploits come in a variety of forms. This learning guide includes tips, articles, white papers and expert advice on exploits that don't yet make the headlines (LEARNING GUIDE)
Cryptography and Java applications (EXPERT ANSWER)
JavaServer Faces: The Complete Reference -- Chapter 15, ... (TIP)
.NET  

Alternatives to server-side includes for ASP.NET: I want to use server-side includes, but how do I do it safely so that it's protected from injection exploits, for example? (EXPERT ANSWER)
Application threats: CSRF, injections, & cookie replay (LEARNING GUIDE)
Professional ASP.NET 2.0 Security, Membership, and Role ... (TIP)
SITE HIGHLIGHTS

Ajax worm can hijack Web sites: It's incredibly easy to create a worm using Ajax that controls all the communication between a user and the server, according to expert Anurag Agarwal.

Testing for security in the age of Ajax programming: Ajax applications require an innovative approach to security testing. Bryan Sullivan offers programmers and QA testers tips on eli...

Podcast: Ajax security: Ajax is not inherently insecure. Expert Caleb Sima explains how to achieve Ajax security in this podcast.

Cross-site request forgery: How this Web exploit works: Cross-site request forgery is a major threat to Web security, and most Web sites aren't equipped to handle this exploit. Expert...
WHAT'S NEW
Looking to 2007: Web application threats
Start preparing now: This primer on the 7 most anticipated threats includes details on RAD, phishing, mashups and more.

Application Security IT Downloads

Tip: Automatic vulnerability scanning

Top 10 app security tips from 2006

EDITOR
Michelle Davidson
Michelle Davidson

Welcome! Send me your ideas and feedback at mdavidson@techtarget.com
ADVERTISEMENT

POPULAR TERMS
MOST POPULAR TERMS

denial of service

Sarbanes-Oxley Act

cross-site scripting

cookie

SQL injection
MOST RECENT TERMS

Sarbanes-Oxley Act

cross-site request forgery

Trusted Computing Group

content spoofing

variable manipulation
GET E-MAIL UPDATES
Receive App Security-related news, tech tips, and more delivered directly to your Inbox. Sign-up by selecting one or more topics and submit your e-mail address below.
Enterprise Java Security
Web Services Security
.NET Security
Not a member? We'll activate your FREE membership with your subscription.
SITE MAP
App Security Topics
Career Center
Events & Conferences
Featured Topic
Glossary


GO TO FULL SITE MAP
ITKnowledge Exchange
Meet the Editors
News
Polls
Products & Vendors
RSS
Search
Tips & Newsletters
Webcasts
White Papers
MEMBERS




MORE INFO
About Us
Contact Us
For Advertisers
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Reprints  |  RSS
SEARCH 
SearchAppSecurity.com is part of the TechTarget network of industry-specific IT Web sitesSearchAppSecurity.com is part of the TechTarget network of industry-specific IT Web sites
CIO AND IT MANAGEMENT
WhatIs.com
SearchCIO.com
SearchSMB.com

STORAGE
SearchStorage.com

DATA CENTER
Search400.com
SearchOpenSource.com
SearchDataCenter.com
SearchServerVirtualization.com

 WINDOWS AND DISTRIBUTED COMPUTING
SearchWinIT.com
SearchDomino.com
SearchExchange.com
Labmice.net
SearchWindowsSecurity.com
SearchWinComputing.com
SearchSQLServer.com

NETWORKING
SearchNetworking.com
SearchMobileComputing.com
SearchVoIP.com

SECURITY
SearchSecurity.com

APPLICATION DEVELOPMENT
SearchVB.com
SearchWebServices.com
TheServerSide.NET
TheServerSide.com
SearchAppSecurity.com

ENTERPRISE APPLICATIONS
SearchCRM.com
SearchSAP.com
SearchOracle.com
2020software.com
SearchDataManagement.com

CHANNEL
SearchITChannel.com
SearchNetworkingChannel.com
SearchSecurityChannel.com
SearchStorageChannel.com
SearchSystemsChannel.com
TechTarget Expert Answer Center  |  TechTarget Events  |  TechTarget Corporate Web Site  |  Media Kit  |  Site Map

Explore SearchTechTarget.com, the guide to the TechTarget network of industry-specific IT Web sites.
All Rights Reserved, Copyright 2006, TechTarget Privacy Statement