Resources

Test your Application Security and Secure Development knowledge by taking the quizzes below

Some of the security misconceptions many software managers have about the state of their application’s state of security.

Application Security: Past Myths, Present Excuses

Various Steps to take to integrate security at different stages in the SDLC. This document acts as a guideline to companies that are still searching for answers on how to build a secure design methodology.

How to integrate security in your SDLC

Counter-measures to common database vulnerabilities for developers to implement.

SQL injection: Developer’s fight back

An article highlighting some of the threats to passwords as we know them and the challenges that biometrics might face in replacing the use of passwords.

Biometrics replacing passwords: Does authentication get better or worse?

Misuse cases as a valuable tool for security engineering and part of the threat modeling process

Misuse Case: Understanding Hacker’s approach

Two articles highlighting how Ajax poor implementation by developers helps reintroduce well known security vulnerabilities.

Means by which you can protect your website from email harvesters collecting email addresses listed on your website.

Don’t let your web app help spammers