Application Security
Application Security | News, how-tos, features, reviews, and videos
Secrets of 'shift left' success
The shift left movement is about bringing security into the software development cycle earlier through DevSecOps and other changes, yielding more secure software more quickly and at lower costs.
Does the answer to better security lie in password-less experiences?
Truly password-less authentication that lets users control personal details is key to avoid identity theft and data breaches.
Reevaluate "low-risk" PHP unserialization vulnerabilities, researcher says
Over nearly a decade, PHP unserialization vulnerabilities have become a popular route for cyber-criminals to plant remote code execution or deliver other malware into systems. But new research, introduced at Black Hat this month,...
What’s next in payment security?
The three fundamental changes that every card-accepting business and payment solution provider must know.
Securing continuous deployment for applications in the cloud
Container orchestration tools lack the necessary security controls but attribute based access control (ABAC) can help.
Google intends to make GCP the most secure cloud platform
If Google wants the world to know how secure Google Cloud Platform is and increase adoption, it must educate the market and turn up the competitive fire.
5 tips for getting started with DevSecOps
Don't be fooled, integrating security into the DevOps process is a big project. But the payoff is worth the effort. Here's what you need to know to get started building DevSecOps from the ground up.
Cybersecurity operations: Don't wait for the alert
An SOC is a useful part of our cybersecurity arsenal, but its main benefit will be in helping to minimize damage from an issue that has already happened. A strong investigative team, on the other hand, can help to identify and resolve...
Security and new technology: How one company faced the unknown
A move to a pure cloud strategy at the London Stock Exchange Group forced a new security mindset. Here's how the LSEG's CISO faced the challenge.
For strong API security, you need a program not a piecemeal approach
When designed and managed properly, APIs can be less problematic than traditional integration methods and can actually increase an organization's security posture.
Does DevSecOps eliminate the segregation of duties between security and DevOps?
Yes, some cloud-native application development tools include basic security features. No, that does not mean DevOps should “own” security.
Hardware, software options emerge for runtime encryption
Hackers are getting better at exploiting encryption gaps that expose plain-text data. New hardware and software runtime encryption solutions aim to close those gaps.
Ripped from the headlines – are your messages secure in these encrypted apps?
In the investigations of Paul Manafort and Michael Cohen, the FBI has retrieved messages from Signal, Telegram and WhatsApp. Seth Hallem explains the weaknesses in these apps and what a good data protection scheme looks like.
X-ray your SaaS apps to reveal hidden security vulnerabilities
Best practices to understand security evaluations what is happening "under the hood" of cloud/SaaS applications.
IT, OT and IoT: existential technology lifecycle management
If you give companies a way to make more money by making it clear that we only buy products that have been tested, approved and include security maintenance plans, those companies will rise to the occasion and work hard to get your...
Cloud functions present new security challenges
Cloud functions, or serverless apps, are small, fast and pop in and out of existence. So, how do you secure them?
When security and privacy overrule convenience
Organizations can enable end-to-end API security with OAuth, OpenID Connect and ABAC.
Cybersecurity outlook: data protection takes center stage
From an ever-increasing uptick in data breaches to the rise of Cybercrime-as-a-Service, data protection will continue to be top of mind for CIOs and their teams through 2018 and beyond.
24 best free security tools
Check out these 24 free, standout software tools that will make your daily security work easier.
24 best free security tools
Check out these 24 free, standout software tools that will make your daily security work easier.
-
White Paper
-
Solution Brief
Sponsored
Sponsored Links