News
3rd Party Application
New open source web application layer firewall ESAPI WAF released
Sabtu, 2 Juli 2011
"The open-source ESAPI WAF is a departure from commercial, network-based firewalls, as well as ModSecurity's free WAF, says Arshan Dabirsiaghi, developer of the ESAPI WAF and director of research for Aspect Security. Dabirsiaghi will roll out the WAF at the OWASP Conference in Washington, D.C., in November. "WAFs today are deployed as appliances meant to protect a suite of applications. They're kind of part of your network and not part of your application," Dabirsiaghi says. ...
"The open-source ESAPI WAF is a departure from commercial, network-based firewalls, as well as ModSecurity's free WAF, says Arshan Dabirsiaghi, developer of the ESAPI WAF and director of research for Aspect Security. Dabirsiaghi will roll out the WAF at the OWASP Conference in Washington, D.C., in November. "WAFs today are deployed as appliances meant to protect a suite of applications. They're kind of part of your network and not part of your application," Dabirsiaghi says. ...
Preventing SQL Injection with SecureSphere Application Data Security Solutions
Jum`at, 22 April 2011
The Imperva SecureSphere Web application firewall features advanced protection against SQL injection attacks and incorporates a multi-layer security model that enables precise attack protection from SQL injection without the need for manual tuning. SecureSphere's security architecture incorporates both dynamic positive (white list) and dynamic negative (black list) security models. Robust enforcement algorithms draw on both security models to identify and block even th...
The Imperva SecureSphere Web application firewall features advanced protection against SQL injection attacks and incorporates a multi-layer security model that enables precise attack protection from SQL injection without the need for manual tuning. SecureSphere's security architecture incorporates both dynamic positive (white list) and dynamic negative (black list) security models. Robust enforcement algorithms draw on both security models to identify and block even th...
Memahami Otorisasi Otomatis pada Aplikasi Facebook
Sabtu, 29 Januari 2011
Pengguna Facebook mungkin akan menemui suatu peringatan bahwa pihak ke 3 yang membuat aplikasi tersebut dapat mengambil informasi pribadi sebelum mengakses aplikasi tersebut. Namun ada cara bagi pihak ke 3 tadi untuk memotong tampilan peringatan tersebut dan permintaan otorisasi eksplisit, menggunakan Automatik Otentikasi yang ditetapkan lebih lanjut di http://wiki.developers.facebook.com/index.php/Automatic_Authentication. Automatik Otentikasi adalah jika pengguna mengunjun...
Pengguna Facebook mungkin akan menemui suatu peringatan bahwa pihak ke 3 yang membuat aplikasi tersebut dapat mengambil informasi pribadi sebelum mengakses aplikasi tersebut. Namun ada cara bagi pihak ke 3 tadi untuk memotong tampilan peringatan tersebut dan permintaan otorisasi eksplisit, menggunakan Automatik Otentikasi yang ditetapkan lebih lanjut di http://wiki.developers.facebook.com/index.php/Automatic_Authentication. Automatik Otentikasi adalah jika pengguna mengunjun...
Message Me On Whatsapp