-
Network firewall vendors
Before deciding on a network firewall vendor, check out this Partner Program Directory. Use these checklists to compare partner programs of network firewall vendors. Partner Program Directory
-
NGX R65 Operational Changes
This chapter excerpt will provide a handy reference to users of Check Point's NGX R65 security software. Book Excerpt
-
Application Security Inc. Partner Program Checklist
An overview of Application Security Inc.'s channel partner program. Partner Program Checklist
-
Application firewalls offer specialized protection
Network security's most dangerous attacks are aimed at specific application protocols, coding flaws, and configuration errors. Application firewall appliances can help network engineers defeat these increasingly focused and specialized attacks. Security Spotlight
-
At WPC 2011, content sparse for Microsoft security partners
Microsoft is pushing cloud services during its Worldwide Partner Conference 2011, leaving IT security to its OEMs and expo exhibitors. News | 13 Jul 2011
-
Is Forefront Endpoint Protection 2010 a good fit for your customer?
Microsoft FEP 2010 is now available for email filtering and antimalware protection of Windows PCs. It's the right choice in some situations, but consider alternatives too. Article | 04 Jan 2011
-
Visa issues payment application security best practices for integrators, resellers
New guidance helps avoid configuration issues, improve secure software development and help merchants securely install payment system software. Article | 26 Aug 2010
-
SANS: Application threats, website flaws pose biggest security threats
A new report from the SANS Institute calls flaws in client-side applications often the most ignored by IT professionals. Article | 15 Sep 2009
-
The downside of offering MSS
Entering managed security services (MSS) is a significant investment, so make sure you've considered the pros and cons carefully. Column | 28 Mar 2007
-
TJX admits losing credit card data to crackers
A December attack breached an unspecified number of customer records from a number of TJX stores in the U.S., Canada, Puerto Rico and Ireland. Article | 18 Jan 2007
-
Report: Oracle security is inferior to Microsoft's
Oracle Corp.'s patching process and general security is weaker than that of Microsoft Corp.'s SQL Server and its products, according to a new whitepaper written by security analyst David Litchfield. During the last six years Microsoft patched 59 flaw... News | 06 Dec 2006
-
Burton Group: Web application firewall market maturing
Web application firewalls have improved performance and functionality, but it still takes time, knowledge and skills to implement them, according to a recent Burton Group report. They are not "fire and forget" solutions. News | 26 Sep 2006
-
Using DMARC to improve DKIM and SPF email antispam effectiveness
DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how. Tip
-
Book chapter: Software test methods for the CISSP exam
Software test methods and testing levels for secure application development are covered in this excerpt from Elsevier’s CISSP Study Guide. Book excerpt
-
Chapter excerpt: Information security models for the CISSP exam
Read about information security models in this excerpt from CISSP Study Guide, Domain 5: Security architecture and design. Book excerpt
-
How to do penetration testing: Overcoming problems and concerns
A lot can go wrong with pen testing. Dave Shackleford discusses potential problems and how to fix them, or avoid them altogether. Tip
-
Tackle your client’s security issues with cloud computing in 10 steps
So your client wants to move to the cloud? Your job just got harder. Kevin McDonald lists 10 steps to protect your client (and yourself). Tip
-
Practicing defense-in-depth: Implementing a defense-in-depth strategy
Implementing a defense-in-depth strategy can protect your customers’ Web applications from attack. Take a layered approach with intrusion prevention, encryption and code review. Tip
-
Analysis: Adobe security gets boost from Reader X sandboxing
Adobe's new Reader X uses sandboxing to stop some of the attacks that can be delivered via a PDF. But Reader X will not install automatically; you must proactively install it. Tip
-
Targeted source code reviews reduce software security vulnerabilities
VARs and resellers currently offering software products such as static and dynamic software scan tools can further assist their clients by providing source code review services. Tip
-
Web application firewall market is hot for resellers, service providers
Vendors in the Web application firewall market are beefing up their channel programs, and more security solution providers are either adding WAF as a stand-alone offering or part of an integrated application security practice. Tip
-
Application firewalls create opportunities for VARs and integrators
Rapid development and the complexity of recent technologies make it difficult to keep up with the latest security technologies and threats. Learn how you can add much needed value by selecting the best application firewall to meet your customer's nee... Tip
- See More: Tips on Application security introduction
-
How should VARs sell the new firewall technology?
Firewall technology is evolving to meet new security challenges, all the while opening new sales and service opportunities for value-added resellers (VARs). Ask the Expert
-
How to ensure PCI-compliant firewall configurations
Learn how to ensure that your client's firewalls are compliant with PCI firewall configuration standards. Ask the Expert
-
Protecting against cross-site request forgery (CSRF) attacks
Get advice on helping your customers prevent CSRF attacks with authentication, tokens and Web application firewalls (WAFs). Ask the Expert
-
application whitelisting
Application whitelisting is a computer administration practice used to prevent unauthorized programs from running. The purpose is primarily to protect computers and networks from harmful applications, and, to a lesser extent, to prevent unnecessary d... Definition
-
Using DMARC to improve DKIM and SPF email antispam effectiveness
DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how. Tip
-
Book chapter: Software test methods for the CISSP exam
Software test methods and testing levels for secure application development are covered in this excerpt from Elsevier’s CISSP Study Guide. Book excerpt
-
Chapter excerpt: Information security models for the CISSP exam
Read about information security models in this excerpt from CISSP Study Guide, Domain 5: Security architecture and design. Book excerpt
-
How to do penetration testing: Overcoming problems and concerns
A lot can go wrong with pen testing. Dave Shackleford discusses potential problems and how to fix them, or avoid them altogether. Tip
-
At WPC 2011, content sparse for Microsoft security partners
Microsoft is pushing cloud services during its Worldwide Partner Conference 2011, leaving IT security to its OEMs and expo exhibitors. News
-
Tackle your client’s security issues with cloud computing in 10 steps
So your client wants to move to the cloud? Your job just got harder. Kevin McDonald lists 10 steps to protect your client (and yourself). Tip
-
Practicing defense-in-depth: Implementing a defense-in-depth strategy
Implementing a defense-in-depth strategy can protect your customers’ Web applications from attack. Take a layered approach with intrusion prevention, encryption and code review. Tip
-
application whitelisting
Application whitelisting is a computer administration practice used to prevent unauthorized programs from running. The purpose is primarily to protect computers and networks from harmful applications, and, to a lesser extent, to prevent unnecessary d... Definition
-
Analysis: Adobe security gets boost from Reader X sandboxing
Adobe's new Reader X uses sandboxing to stop some of the attacks that can be delivered via a PDF. But Reader X will not install automatically; you must proactively install it. Tip
-
Is Forefront Endpoint Protection 2010 a good fit for your customer?
Microsoft FEP 2010 is now available for email filtering and antimalware protection of Windows PCs. It's the right choice in some situations, but consider alternatives too. Article
- See More: All on Application security introduction
About Application security introduction
In this application security introduction you will receive tips and expert advice on the basics of application security. You will learn how to use application-layer firewalls to secure customers' business applications and several techniques for securing business databases. Find information on how to select the best application firewall, how to configure firewalls, the benefits of an email firewall for SMB customers and how to tune application level firewalls for specific environments. Also get information on database hacks as well as information on how to secure data in SQL Server, how to test SQL Server security and how to improve SQL Server database security.