Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Use the revised OWASP Top Ten to secure your Web applications -- Part 8
- In this final installment in the revised Open Web Application Security Project OWASP Top 10 series, the final three vulnerabilities are explored -- insecure cryptographic storage, insecure communications, and failure to restrict URL access. Tom Olzak explains the nature of these weaknesses followed by recommendations for protecting Web applications from...
- Tags: Web Application, Tom Olzak, Cloud Computing
- Download resources 2007-06-13
- Use the revised OWASP Top Ten to secure your Web applications - Part 7
- The seventh installment in the 2007 OWASP Top 10 series takes a look at broken authentication and session management vulnerabilities. Tom Olzak explains the nature of this weakness followed by recommendations for protecting Web applications from attacks related to this security problem. This download is also available...
- Tags: Web Application, Tom Olzak, Cloud Computing, Security
- Download resources 2007-06-06
- Use the revised OWASP Top Ten to secure your Web applications -- Part 6
- Vulnerability six in the 2007 OWASP Top Ten is Information Leaking and Improper Error Handling. Typically caused by verbose errors, attackers exploit this weakness to obtain information about the target system's software and hardware architecture. In this, the sixth in a series on the revised OWASP Top Ten Web Application...
- Tags: Web Application, Tom Olzak, Cloud Computing
- Download resources 2007-05-10
- Use the revised OWASP Top Ten to secure your Web applications -- Part 5
- Insecure direct object access and cross site request forgery CSRF are serious flaws found in many Web applications. In fact, some hackers say that there isn't a Web site on the Internet that isn't vulnerable in some way to CSRF. In this, the fifth in a series on the revised...
- Tags: Web Application, Tom Olzak, Cloud Computing
- Download resources 2007-04-18
- Use the revised OWASP Top Ten to secure your Web applications -- Part 4
- Malicious file execution is one more weakness caused by failing to control application input. In this, the fourth in a series on the revised OWASP Top Ten Web Application Vulnerabilities, Tom Olzak explains the nature of malicious code execution followed by recommendations for protecting Web applications from related attacks. Coding...
- Tags: Web Application, Execution, Tom Olzak, File Execution, Cloud Computing, Viruses And Worms, Security
- Download resources 2007-04-02
- Use the revised OWASP Top Ten to secure your Web applications -- Part 3
- Injection flaws, specifically SQL injection vulnerabilities, can present the greatest business risk in a Web application environment. In this, the third in a series on the revised OWAP Top Ten Web Application Vulnerabilities, Tom Olzak explains the nature of injection flaws and SQL injection attacks and then makes recommendations for...
- Tags: Web Application, SQL Injection, Tom Olzak, Cloud Computing, Security
- Download resources 2007-03-23
- Use the revised OWASP Top Ten to secure your Web applications -- Part 2
- Cross site scripting XSS vulnerabilities are normally found in Web applications in which code injection is allowed. It is the most common Web application vulnerability. Scripts exploiting this weakness can cause serious problems for home and business users. In this download, Tom Olzak explores the types of cross site scripting...
- Tags: XSS, Web Application, Tom Olzak, Cloud Computing
- Download resources 2007-03-05
- Lock it down: Use the revised OWASP Top Ten to secure your Web applications -- Part 1
- For the first time since 2004, the Open Web Application Security Project OWASP is updating its Top 10 Vulnerabilities list. As a supplement to an previously published TechRepublic article on the 2004 OWASP Top 10, this is the second in a series of articles in which Tom Olzak explores the...
- Tags: TechRepublic Inc., Environment, Article, Web Application, Tom Olzak, Cloud Computing
- Download resources 2007-02-15
- Reduce multi-factor authentication costs with behavioral biometrics
- User acceptance and high cost often prevent organizations from adopting biometrics as a workstation multi-factor authentication solution. So how do businesses deal with the weak security presented by password-only authentication? Behavioral biometrics, and keystroke dynamics in particular, might be the answer. Using biometrics for multi-factor authentication does not have to...
- Tags: Authentication, Tom Olzak, Biometrics, Authentication/Encryption, Security
- Download resources 2007-01-17
- Workplace privacy versus computer abuse prevention, which prevails
- Courts are increasingly holding employers responsible for the actions taken by employees using company-owned computers. On the other hand, employees continue to push back through litigation claiming their privacy is being violated. It might come as a surprise to many that employees are sometimes justified in their expectations of workplace...
- Tags: Workplace, Privacy, Computer, Tom Olzak, Courts, Recruitment & Selection, Human Resources, Workforce Management
- Download resources 2006-12-15
- Secure your Bluetooth wireless networks and protect your data
- Bluetooth is a great addition to the business productivity toolbox. However, Bluetooth technology must be understood by the technical team and its deployment should be closely managed. Failure to purchase devices that support the right security measures, or to minimize exposure due to unmanaged device discovery, puts your enterprise data...
- Tags: Network, Wireless Network, Tom Olzak, Bluetooth, Wi-Fi, Wireless
- Download resources 2006-12-01
Additional Resources
- IT Dojo: Master the five phases of a successful network penetration [video]
- Understanding how an enemy can penetrate your defenses is critical to effectively protecting your network. In this video, Bill Detwiler goes over the five phases of successful network penetration: Reconnaissance Scanning Gaining Access Maintaining Access ...
- Tags: Network, Information Technology, Video, Network Penetration, Corporate Communications, Strategy, Networking, Marketing, Management, Larry Dignan
- Blog posts 2009-04-07
- Prepare for e-discovery requests: How to avoid disastrous legal sanctions and fines
- When companies are hit with a lawsuit, IT leaders are often ill-prepared for an e-discovery request. For instance, does your company have formal e-discovery policies? Do you know what data to store and how long to store it? IT leaders who stumble trying to answer these questions may be setting...
- Tags: Sanction, TechRepublic Inc., Data Management, Strategy, Management
- Download resources 2008-09-04
- VoIP security? Encrypt, encrypt, encrypt
- On our sister site TechRepublic, IT Security blogger Tom Olzak runs a guest column from technology and security author-consultant Deb Shinder.In her piece "VoIP threats: beyond eavesdropping," Deb runs through a list of VoIP security vulnerabilities: Denial of Service attacks, flooding and logic attacks, injected messages, call hijacking, and caller...
- Tags: Security
- Blog posts 2007-07-16
- << Previous
- page 1 of 1
- Next >>
Popular Sanity Saver Videos
White Papers and Webcasts
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
