Expert analysis
Biometric Myths: Six Of The Best
It is probably the hottest sector in the security field today. Yet the biometrics industry, which produces human-based identification systems, is weighed down with claims and …
Interview with Bruce Hendrix, President and CEO of ServGate
What do you see as the biggest online security threats today? What are your clients most worried about? The key threats to deal with today are the so-called ‘blended …
Digital Certificates Explained
In this 3:43 minutes long audio learning session, Dr. Phillip Hallam-Baker, Principle Scientist and Web Services Security Architect at Verisign, talks about Public Key …
Are You Prepared For Disaster? Is Your Data Really Protected?
Whether it be hurricane, flood, fire or simply a member of staff accidentally hitting the delete key, your company’s data is constantly at risk from being permanently …
Executive Conversation: The Future of Instant Messaging is Simple, Secure, and Self-Managed
For a moment let’s suppose I am the CEO of a multi-million dollar corporation and I send an Instant Message to my General Counsel. He sends me information that should …
A Holistic Approach to Securing the Enterprise
The continuance of malicious computer attacks has made security a front page topic in almost every board room and IT oversight committee. Most IT departments accept that …
SQL Injection Attacks
SQL injection is a technique for exploiting web applications that use client-supplied data in SQL queries without stripping potentially harmful characters first. Despite being …
Cookie Path Best Practice
Cookies provide a method for creating a stateful HTTP session and their recommended use is formally defined within RFC2965 and BCP44. Although they are used for many purposes, …
The Benefits of SSL VPNs
Secure Sockets Layer (SSL) Virtual Private Networks are quickly gaining popularity as serious contenders in the remote-access marketplace. Analysts predict that products based …
Secure Development Framework
This whitepaper deals with developing a secure framework, both for internal and outsourced development. Within this context, secure development is considered to be the process …
Application Denial of Service (DoS) Attacks
Denial of Services attacks aimed at disrupting network services range from simple bandwidth exhaustion attacks and those targeted at flaws in commercial software to complex …
Alternatives to Passwords
The third annual survey into office scruples conducted by Infosecurity Europe 2004 found that office workers are still not information security savvy. A survey of office …
Featured news
Resources
Don't miss
- Why your security team feels stuck
- It’s time to give AI security its own playbook and the people to run it
- Kanvas: Open-source incident response case management tool
- 6 eye-opening books on AI’s rise, risks, and realities
- Check for CitrixBleed 2 exploitation even if you patched quickly! (CVE-2025-5777)