At this week's VSLive in San Francisco, security specialist Sanctum Inc. announced an automated security testing suite for application developers -- AppScan Developer Edition (DE) 1.5 -- that can integrate with Microsoft's Visual Studio .NET.
The application and operating system levels are the places to focus on when detecting and blocking hacker attacks, said the founder of Sana Security Inc., a new technology company pledged to provide better computer security.
Microsoft's in-house development groups last year took a well-publicized sabbatical to try to better ensure the security of the company's software. Best practices developed during and since that "trip to the woodshed" have now led to
guides and suggestions the company offers to all developers working on its Windows -- now .NET -- platform.
According to Gary McGraw, CTO at Cigital, the greatest threat to computer system security is "the software you wrote yourself without thinking about security when you were writing it." He offers some tips on avoiding hackers and script kiddies.
It is time to move beyond the pre-Web services model for security systems, contends Kerry Champion, president of Westbridge Technology Inc., a Mountain View, Calif.-based start-up builder of XML firewalls.
Everyone knows the basics of network security, but a little review never hurt anyone.
Nascent applications that identify people via fingerprints, facial contours, DNA, iris scans, voices, or other characteristics are popping up. -March 12, 2002
Richard A. Clarke, White House Special Advisor for Cyber Security,
plugged his proposal for the creation of Govnet, a private network
exclusively for sensitive government computers at the annual RSA
Security Conference held last week in San Jose, Calif. -Feb 27, 2002