Dynamic vs Static Security Testing
Rob Rockweld of Fortify Software discusses Dynamic vs Static Security Testing. Video provided by the SANS Institute.
Rob Rockweld of Fortify Software discusses Dynamic vs Static Security Testing. Video provided by the SANS Institute.
That rude and harsh world outside our development shops can be chartered with the right gear for every situation. No application can stand alone and must work together with other applications in a team of trust to fulfill the task in the best and securest way and build reputation for …
Spring Security is a popular, open-source Java security framework that represents the Spring portfolio’s official security capability. It has received hundreds of thousands of downloads, been ported to other platforms (such as Python and Microsoft .NET) and represents a popular choice in many banking, government, and military installations. This session …
Security Patterns are a great reference for building secure software, but they are mostly very abstract and ignore technologies like AOP, frameworks and libraries. Also, there are many patterns out there and it’s hard to find the right ones. In this session you will see the common patterns adopted with …
Although Java offers some great security ‘features’, this talk will handle the lack of ‘build in’ security when you develop your web applications. Security is not an on/off button or parameter you activate for your deployment! Some real world hacks will be demonstrated to show how easy it is to …
Eric Johnson presents the most common options you have for configuring application security in SQL Server. Learn how to set up a single login for use by a whole application, a login for each user, and how you can use application rules to enhance security.