Developer.com: Your Home for Java and Open Source Development Knowledge

Security Section Index

Coverity 5.5 Finds Bugs and Continuous Integration Kinship

By Sean Michael Kerner

| Security Article Published 10-Oct-11

New release of Coverity 5.5 static analysis tool integrates FindBugs and Jenkins to expand continuous build and test workflow.

W3af Open Source App Vulnerability Testing Hits 1.0

By Sean Michael Kerner

| Security Article Published 27-May-11

Application vulnerability testing toolkit finally stabilizes with new PHP static analysis tools.

Google Hacking Evolves for Defense

By Sean Michael Kerner

| Security Article Published 02-Aug-10

New tools announced at Black Hat will enable Google and Bing search queries for security vulnerability detection.

Simple User Authentication with Apache and MySQL

By Jason Gilmore

| Security Article Published 12-Jul-10

Need a simple way to manage access to your Web content? The open source Apache Web server and MySQL database have everything you need.

Watch it Live on Codeguru: Windows Phone Developer Event Live!
October 20th, 9:00am - 5:00pm PST (GMT - 7:00:00)

Join us for a Windows Phone Developer Event presented by Microsoft live from Nokia. Learn firsthand everything you need to know to develop, publish and make money with Windows Phone apps. Click here to save the date!

PHP Remains Strong Despite Security Flaws

By Sean Michael Kerner

| Security Article Published 03-Jun-10

Over 60 bugs were reported in PHP in May, should PHP users and developers be worried?

10 Simple Security Tasks for Locking Down Your LAMP Website

By Jason Gilmore

| Security Article Published 26-May-10

These 10 powerful security procedures will help protect your Linux, Apache, MySQL and PHP-driven website against common attacks.

HP Fortifies Security with Static and Dynamic Analysis

By Sean Michael Kerner

| Security Article Published 22-Feb-10

Partnership between HP and code scanning vendor Fortify provides a view of application security from development code to runtime server.

JavaScript Security

By Thomas Valentine

| Security Article Published 16-Jan-09

See how you can tighten security gaps using JavaScript and practices such as the Same Origin Policy, Data Tainting, and Signed Scripts.

Message Authentication: Unlocking the Secrets of the Java Cryptography Extensions

By David Thurmond

| Security Article Published 01-Dec-08

Learn how to check message integrity with message authentication and the Java Cryptography Extension.

Records Management for Microsoft Office SharePoint Server

By Gustavo Velez

| Security Article Published 21-Nov-08

The Records Center is an important MOSS (Microsoft Office SharePoint Server) component for companies that need to save critical or legally sensitive information. Discover how to create a Records Center then secure its contents with the MOSS Object Model and one of its default WebServices.

Unlocking the Secrets of Java Cryptography Extensions: The Basics

By David Thurmond

| Security Article Published 15-Oct-08

Learn about cryptography and how to encrypt and decrypt data with the Java Cryptography Extension.

Planning WebLogic Portal Security

By Scott Nelson

| Security Article Published 22-Sep-08

The WebLogic Portal provides a highly flexible and customizable security framework. Knowing your options will help you plan the security implementation that is usable, reliable and maintainable.

What Is Application Security?

By Irina Medvinskaya

| Security Article Published 23-Jul-08

Discover the basic principles of Application Security and how it relates to various government and industry regulations and standards. Also, learn about internal and external Information Security threats and how to protect systems and applications better.

Adobe's Emerging Rich Media Ecosystem, Part 3: Marketing, Service Level Agreements, and Security

By Marcia Gulesian

| Security Article Published 05-May-08

You need both technical expertise and business savvy to create and maintain a successful streaming media site.

Building Desktop Applications For The Web With Adobe Integrated Runtime

By Marcia Gulesian

| Security Article Published 18-Mar-08

People are building desktop applications for the web that are unlike any web-based application anyone has ever seen before. Adobe is leading this movement with a cross-operating system runtime that enables you to create rich applications that can run either online or offline, when appropriate or necessary.

Advanced Active Record Validations with Rails

By Jason Gilmore

| Security Article Published 26-Nov-07

Use Rails' Active Record validation callbacks to exercise greater control over user input.

Implementing an Anti-Virus File Scan in JEE Applications

By Vlad Kofman

| Security Article Published 15-Nov-07

Discover a unique approach to implementing anti-virus scanning in your Java applications.

Sun Releases Information on J2SE Vulnerabilities

By Rosemarie Graham

| Security Article Published 11-Oct-07

Do you use Java 2 Platform, Standard Edition? One of the 11 areas of vulnerabilities reported this month may effect you.

Implementing a Custom ConnectionString Installer for Setup

By Paul Kimmel

| Security Article Published 10-Oct-07

See how a setup project with a custom action lets the user define the connection string using the Data Links dialog and encrypt that connection string using RSA encryption.

Nominations for Developer.com Product of the Year Begin October 15

By Rosemarie Graham

| Security Article Published 01-Oct-07

Help Developer.com choose the best of the best for the upcoming year.

The Basics of Manipulating File Access Control Lists with C#

By Jani Järvinen

| Security Article Published 26-Sep-07

Learn about file access control lists and how to use C# to read and modify them to improve the security of your applications and your IT infrastructure.

Object Integrity & Security: Error & Exceptions

By Matt Weisfeld

| Security Article Published 06-Sep-07

One of the advantages of using object-oriented languages is that much of the error/exception handling is built directly into the language itself. Thus, many of these issues can be handled during the design of the application—and not when the application crashes in the hands of a user.

Handling Anomalies: Errors and Exceptions

By Matt Weisfeld

| Security Article Published 06-Aug-07

When things go wrong in an application, what should the code do?

Cryptographic Solutions for .NET Developers: Hashing and Encryption

By Jani Järvinen

| Security Article Published 27-Jul-07

Learn how to use cryptography to improve the security of your applications. Discover the basic building blocks for encryption and hashing using C#.

Speech Authentication Strategies, Risk Mitigation, and Business Metrics

By Marcia Gulesian

| Security Article Published 22-Jun-07

Compare the economic and technical differences among voice authenticated applications and those using traditional or other biometric methods of authentication.