News (19)

Expert: Hold developers liable for flaws

Software developers should be held personally accountable for the security of the code they write, said Howard Schmidt, a former White House cybersecurity adviser. Read more »

Debian and Ubuntu OpenSSL generates useless crypto keys

For almost two years the OpenSSL library used by Linux distribution Debian has been generating useless cryptographic keys — although Debian has issued a patch, experts warn that systems may still be exposed. Read more »

Skype protocol cracked?

Chinese engineers have allegedly cracked Skype's Internet telephony protocol, according to a Thursday blog posting. Read more »

Developers take Linux attacks to heart

A handful of recent online attacks on free and open-source software servers has open-source developers looking over their shoulders. Read more »

Judge halts Defcon hacking speech

A federal judge on Saturday in the US granted the Massachusetts transit authority's request for an injunction preventing three MIT students from giving a presentation about hacking smartcards used in the Boston subway system. Read more »

Microsoft's leaner approach to Vista security

Microsoft is talking up support for hardware-based security in Windows Vista, though only a sliver of the company's original plan will make it into the operating system. Read more »

PHP, Python, Samba get security tick of approval

Perl, PHP, Python and Samba have been commended for improving security in a report analysing over 250 open-source projects. Read more »

Azure manages to avoid a Hailstorm of criticism

Microsoft's Hailstorm prompted an avalanche of criticism when it was proposed seven years ago, but developers seem to have few qualms with Windows Azure, which embraces many of the same notions. Read more »

Windows-based ATMs an easy touch for hackers

Security experts have hacked ATMs to show how easy it is to steal money and bank account details from modern cash machines. Read more »

BlackBerry gets Java boost

Research In Motion on Tuesday unveiled a new set of Java development tools for its BlackBerry handheld. Read more »

More Code, Developer, Encryption, Security News Results

Features (53)

Maintaining session state in ASP

What are the issues surrounding the use of session IDs in both "classic" ASP and ASP.NET and what happens with sessions when multiple Web servers come into play? Read more »

.NET demystifies encryption

.NET makes cryptography a little simpler by putting everything into one SDK. Find out how to encrypt and decrypt a text file with the System.Security.Cryptography namespace. Read more »

Protect your network traffic using Java's encryption features

The Java Development Kit has strong encryption and security support. One of the nicer features is its built-in support for socket communication. Builder.com shows here it's easy to write a client and a server that talk to each other securely with encrypted streams. Read more »

Tools for securing your XML documents

The W3C offers two specifications for securing your XML documents, XML Signature and XML Encryption. Find out which tools can help create secure XML documents that adhere to these standards. Read more »

Security through obscurity won't secure your code

Most applications use some form of security through obscurity, but you should avoid it when writing your apps. ZDNet Australia offers these tips on how to tighten up your code. Read more »

Develop secure software at the application level

Protect your application from input overflow and underflow attacks, and from other common tactics with these development techniques. Read more »

Hack proof your Web services

Web services promise to revolutionise your company's development practices by connecting your company seamlessly with customers and other companies worldwide. With this promise, however, come new threats from hackers and information thieves. Here are some tips for securing your Web Services. Read more »

Master the basics of Java Cryptography Extension (JCE)

Security is an often-overlooked aspect of application development. Fortunately, Java has recognised the importance of security with Java Cryptography Extension (JCE). This article begins a three-part series exploring JCE fundamentals. Read more »

Protect ASP.NET data with the DPAPI

Although .NET offers tight cryptography classes, a more efficient approach for ASP.NET developers is to implement the Data Protection API (DPAPI). Read more »

Install and utilise JCE

Security is an often-overlooked aspect of application development. Java has recognised the importance of security with Java Cryptography Extension (JCE). Read more »

More Code, Developer, Encryption, Security Features Results

Blog (1)

5 reasons restricting hacking is not like gun control

Nick Gibson [blogs:byteclub] -- Let's get it out of the way: Guns don't kill people, people with guns kill people. People with hacking tools can steal your personal data, shut down your system and deface your web site -- but is that any reason to ban them? Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

  • Staff A first look at Windows 7 beta

    In this week's Roundup we show you a preview of Windows 7 beta, cover news from the annual Macworld and more. Read more »

    -- posted by Staff

  • Staff Opera's new SDK: Better browsing on the Wii?

    Opera has thrown a little more love at device developers by announcing an updated version of its software development kit on Wednesday at CES. Read more »

    -- posted by Staff

  • Staff 2008: Time to call stumps

    It's another year down but some things never change. That was shown this week as Internet Explorer remained under fire from yet another zero-day exploit. In other news, we set a hard drive on fire and Apple cans its involvement with MacWorld. Read more »

    -- posted by Staff

What's on?