Topic: security

Zeichick’s Take: Preying on the weaknesses

Whatever we’re doing for software security, it’s not enough. We need to keep vigilant … continue reading

From the Editors: Best practices for software security

Security is a top-down process; DevOps isn’t just driven by vendors … continue reading

SAFECode guides agile developers in security

Group issues paper listing 36 practices to reduce software security flaws … continue reading

Zeichick’s Take: Is that really you, Dave?

Can computers be trained to verify a user’s identity by monitoring their behavior? They just might … continue reading

Apple is finally taking security seriously

Apple was once seen as untouchable in the world of security. After the Flashback outbreak, that image is no more … continue reading

As open-source adoption grows, so do security risks

Companies do not keep good records of open-source use, nor do they check in enough with open-source communities … continue reading

Survey: A third of development teams keep open-source records

Lack of management, governance of code use leaves organizations vulnerable to security breaches … continue reading

Zeichick’s Take: With software security, we’re outgunned

Hackers are one step ahead of security efforts, and are better organized than the businesses they target … continue reading

RSA Conference advocates openness

Personal devices on networks and Anonymous dominated discussion, while talk of locking down networks ceased … continue reading

The yin and yang of SharePoint

Eric Darbe talks about the conflict between wide internal SharePoint adoption and security concerns … continue reading

Survey: Developers still not doing enough to ensure security

SQL injections and cross-site scripting vulnerabilities remain despite years of drumbeating on the subject … continue reading

Zeichick’s Take: Securing the data

Security can’t account for every last threat or vulnerability, but programmers should still strive for maximum protection … continue reading Protection Status