[ad#content2]The recent security breach over at Twitter (which I’m sure you’ve all heard about) has thrown the topic of web application security firmly into the limelight. An application of such a size, popularity, and importance, should have had a few better security measures in place.
In fact the security measures Twitter should have implemented have been around for years.
I’ve already mentioned OWASP in a previous post on security, but I can’t highlight just how valuable it is as a resource. They’ve produced lots of information on web application security, and the information is kept up-to-date. So as new threats, and hacks are discovered, new ways of preventing them are created and publicised.
If you develop web applications, I’d recommend subscribing to their moderated news feed. OWASP members review information from over 130 sources, and choose the best and most useful information to display in their feed. It means you won’t have to sift through the plethora of web app security news yourself.
I’d also like to highlight a series of article produced by a security consultancy practise called Securosis. They’ve put together 8 posts on building a web application security platform. It makes for valuable reading, and will give you a good grounding on what kind of security your app will need.
Better web app security
[ad#content2]The recent security breach over at Twitter (which I’m sure you’ve all heard about) has thrown the topic of web application security firmly into the limelight. An application of such a size, popularity, and importance, should have had a few better security measures in place.
In fact the security measures Twitter should have implemented have been around for years.
I’ve already mentioned OWASP in a previous post on security, but I can’t highlight just how valuable it is as a resource. They’ve produced lots of information on web application security, and the information is kept up-to-date. So as new threats, and hacks are discovered, new ways of preventing them are created and publicised.
If you develop web applications, I’d recommend subscribing to their moderated news feed. OWASP members review information from over 130 sources, and choose the best and most useful information to display in their feed. It means you won’t have to sift through the plethora of web app security news yourself.
I’d also like to highlight a series of article produced by a security consultancy practise called Securosis. They’ve put together 8 posts on building a web application security platform. It makes for valuable reading, and will give you a good grounding on what kind of security your app will need.