Application Security for Every Scale
my.defence
Cloud computing was not designed for security, although organizations such as Cloud Security Alliance (CSA) and Open Web Application Security Project (OWASP) are making great strides in helping the industry solve the myriad security problems confronting cloud computing. The benchmark guidelines established by the CSA in the document, Guidance for Critical Areas of Focus in Cloud Computing, is a great first step. This white paper is intended to pick up where the CSA guide left off in terms of defining what a distributed web application firewall (dWAF) should look like in order to meet the standards set within the CSA document.
CODEPROFILER from Virtual Forge from VirtualForge is a tool for automated security analysis of ABAP source code. ABAP is one of the most powerful and widely used high-level languages for business applications. SAP customers have developed large own ABAP programs which are the backbone of their company in the IT landscape. Therefore, a key question in these companies is, how you can measure the security quality of your custom code in complex, constantly changing IT landscapes. The only effective way to control security risks in big and constantly changing amounts of code is automated source code analysis.
Solutions
Shopping in the internet is the fastest grown shopping model ever happened. Especially in the mid-price-range of shopping goods the quotient over all is near half of the sales volume. It sounds strange, when a study about implemented security features into the shop systems shows a value of circa 10 % with additional security components in the shop systems. Under normal conditions you know nothing about the incoming requests, because all the security systems in the data center of your hosting provider are monitoring the transportation layer.......
As a hosting provider you normally have all of your systems fault tolerant, have backup data lines in different backbones, your standby set allows electrical power outage for more than one hour and your security systems inspect each data package and know everything about IP address from source and destination.......
Art of defence’s patent-pending dWAF technology hyperguard and its multi-tenant software architecture solve the main limitations traditional WAF’s face securing cloud applications. The distributed software-only solution is rapidly scalable and ideal for leveraging virtualized resources on its own......
CODEPROFILER from Virtual Forge from VirtualForge is a tool for automated security analysis of ABAP source code. ABAP is one of the most powerful and widely used high-level languages for business applications. SAP customers have developed large own ABAP programs which are the backbone of their company in the IT landscape. Therefore, a key question in these companies is, how you can measure the security quality of your custom code in complex, constantly changing IT landscapes. The only effective way to control security risks in big and constantly changing amounts of code is automated source code analysis........
hyperguard is a web application firewall that protects the business logic of the web application transported by HTTP against known and unknown attacks (www.owasp.org). hyperguard runs on all Microsoft server platforms, offers a flexible deployment, high scalability, is configurable flexibly and can be integrated as a plugin solution into existing security structures without large additional costs........
The Payment Card Industry Data Security Standard (PCI DSS) was established by the PCI Security Standards Council which consists of the leading credit card organisations. The Standard details security requirements for storing, processing or transmitting cardholder data. The latest version 1.2 was released in October 2008......