Web Security
Subcategories
Sort
Web Application Security: Harder than you think
I was reading an advertisement the other day, from some company offering web hosting services. They were offering their services as secure on the basis that they used "SSL Certificates", "Firewalls", and "VPNs" ( plus a few ot...
Hacking WEB 2.0
In this paper, written by Petko Petkov, he outlines some of the dangers of Web2.0 by combining fictional stories with technology that is real. Each story begins with a prologue, which introduces the problem, and finishes with a conclusion, which summ...
Is Internet Explorer More Secure than FireFox?
In this paper we look at how it is possible to circumvent a company's security policy by using a web browser. Specifically, we compare Internet Explorer with Firefox web browser when connecting to a website that is not FIPS-140 compliant and the ...
For My Next Trick... Hacking WEB2.0
In this paper, written by Petko Petkov, he outlines some of the dangers of Web2.0 by combining fictional stories with technology that is real. Each story begins with a prologue, which introduces the problem, and finishes with a conclusion, which summ...
Controlling Website Account Information
Alex Colson submits this article on security around website account information submitted by users.
Implementing Effective Vulnerability Remediation Strategies Within the Web Application Development L
In part two of this Spi-Dynamics 3 part series, authors Caleb Sima and Vincent Liu discuss how to prioritize and remediate web application vulnerabilities.
Microsoft UK Events Website Hacked
The partner event registration page of the Microsoft UK events website, has been defaced by a hacker who managed to discover and exploit a web application vulnerability in one of the parameters used by the form on the website, which could previously ...
A Guide to Discovering Web Application Insecurities, Before Attackers Do
It is all over the news: web based attacks are climbing, month over month, year over year. At the same time companies are attempting to combat such attacks, attackers are devising new methods to infiltrate systems. In the event you were on a reality ...
A Look at Automatic Protocol Generation & Security Protocols
This paper will attempt to describe automatic protocol generation, and security protocols. Automatic Protocol Generation, APG for short, is a mechanism to generate security protocols automatically. This is accomplished by having the designer or engin...
Ajax Security Basics
The purpose of this article is to introduce some of the security implications with modern Ajax web technologies. Though Ajax applications can be more difficult to test, security professionals already have most of relevant approaches and tools needed.
Add this list to your website
Copy and paste this javascript into your webpage to show a dynamic list of papers in this category. More information
here
Page: 1 2 3
