Monday, 21 May 2012
How can you ensure your login page won't be vulnerable to SQL injection and other attacks? Application security expert Paul Holm explains how you can use SSL and encryption to fend off hackers.
Unified, ubiquitous access has historically been out of reach and enterprises are clamoring for a single appliance to handle all their secure access needs. Typically companies needed multiple single-purpose devices to handle their access needs... until now.
Web businesses face a crisis in confidence. Trust in site security is declining, and in increasing numbers consumers are scaling back their online transactions - or opting out entirely. For SSL Certificates to reclaim their authority as a source of site identity information for visitors, industry leaders needed to shore up two weaknesses in the existing system.
Web traffic is regularly monitored by enterprises and security attackers. Sherri Davidoff gives a review of how these connections are monitored and how you can reduce the risks.
Much of the new growth in Web application development is focused on business-critical applications, many of which are hosted by third parties or accessed over public infrastructure. Not surprising, the criticality and confidentiality of Internet-accessible applications has led organizations to rely more heavily on SSL encryption.
A researcher suggests that the recent vulnerability discovered in the SSL protocol may have very little actual security impacts.
U.S. Computer Emergency Readiness Team has released an advisory warning users of VPN software from Cisco Systems, Juniper, and others which make systems vulnerable to web-based attacks.
Resorts World Sentosa has deployed Juniper Networks security systems to protect its information infrastructure. Complemented by Juniper's intrusion detection and prevention appliances and it's SSL VPN platform to fulfill its remote access requirements, they provide low-latency, high availability systems on a highly secure and responsive communications infrastructure.
SSL, the encryption scheme that protects virtually all secure online transaction, requires that users rely on trusted third parties, but what if they can't be trusted?
The recent release of the Firesheep Wi-Fi attack tool has increased awareness among both users and attackers of the inherent insecurity of unprotected HTTP connections. Users on unprotected networks who connect to web sites through plain HTTP connections expose themselves to open surveillance and full compromise.
knowledge_central_tab
Knowledge Central
Less secure than you think 
This white paper examines the changing threat landscape, how the nature of security threats has evolved, and the potential financial impact across vertical markets and organizations of all sizes. This paper will explain why advanced targeted attacks have been extremely effective at breaking through traditional network security and enabling the massive data breaches and intellectual property thefts that are keeping CISOs awake at night.
Trusted Mobility Index
The mobile ecosystem of devices, services and networks is at a critical inflection point.While the mobile revolution is unleashing massive opportunities in both emerging and mature economies, it is also increasing in complexity and confusion. The reality is the lightning-fast adoption of powerful, smart devices is outpacing society’s ability to secure them. Today, trust in mobility hangs in the balance.
MasterCard tackles BYOD with strict conditions
More than a year into its bring-your-own-device program, MasterCard Worldwide continuously assesses the security technology and policies that allow 30 percent of its employees worldwide to use their personal iPhones, iPads and Android devices at work.
HID Global deploys a centralized, web-based IP access control solution at Fuxi Power Plant
Unable to meet the needs for real-time monitoring with its traditional patrol system, China's Fuxi Power Plant has deployed HID Global's VertX V2000.
