Security News


Tool for .NET developers takes drudgery out of security

At this week's VSLive in San Francisco, security specialist Sanctum Inc. announced an automated security testing suite for application developers -- AppScan Developer Edition (DE) 1.5 -- that can integrate with Microsoft's Visual Studio .NET.

Immune to attacks: Start-up has new medicine

The application and operating system levels are the places to focus on when detecting and blocking hacker attacks, said the founder of Sana Security Inc., a new technology company pledged to provide better computer security.

Tips for developing secure Microsoft apps

Microsoft's in-house development groups last year took a well-publicized sabbatical to try to better ensure the security of the company's software. Best practices developed during and since that "trip to the woodshed" have now led to guides and suggestions the company offers to all developers working on its Windows -- now .NET -- platform.

What to do before hackers attack your program

According to Gary McGraw, CTO at Cigital, the greatest threat to computer system security is "the software you wrote yourself without thinking about security when you were writing it." He offers some tips on avoiding hackers and script kiddies.

Standardization key to Web services security

It is time to move beyond the pre-Web services model for security systems, contends Kerry Champion, president of Westbridge Technology Inc., a Mountain View, Calif.-based start-up builder of XML firewalls.

Seven security basics

Everyone knows the basics of network security, but a little review never hurt anyone.

Biometrics standards emerge from OASIS

Nascent applications that identify people via fingerprints, facial contours, DNA, iris scans, voices, or other characteristics are popping up. -March 12, 2002

White House aide pushes private government net

Richard A. Clarke, White House Special Advisor for Cyber Security, plugged his proposal for the creation of Govnet, a private network exclusively for sensitive government computers at the annual RSA Security Conference held last week in San Jose, Calif. -Feb 27, 2002