News on Monday
more>>
SharePoint Tech Report
more>>

Download Current Issue
ISSUE 7/1/2009 PDF

Need Back Issues?
DOWNLOAD HERE

Receive the print Edition?

A knockout blow for Borland?
MicroFocus has upped its offer for Borland Software to $1.50, hoping to chase off a mystery suitor also pursuing the ALM vendor.
07/06/2009 12:26 PM EST

Is the mystery Borland suitor Serena?
Borland software is considering an offer from another company after a preliminary deal with MicroFocus. Is Serena the new company?
06/30/2009 01:55 PM EST

Windows 7 - An eBayer's dream product?
Windows 7 pre-orders can make people money on eBay.
06/29/2009 03:48 PM EST

Microsoft Worldwide Partner Conf.
7/13/2009 to 7/16/2009
New Orleans
Microsoft

OSCON (Open Source Convention)
7/20/2009 to 7/24/2009
San Jose
O'Reilly Media

XBRL Technology Workshop & Summit
7/28/2009 to 7/30/2009
Santa Clara
XBRL US

ACM SIGGRAPH
8/3/2009 to 8/7/2009
New Orleans
ACM SIGGRAPH

OpenSource World (formerly LinuxWorld)
8/12/2009 to 8/13/2009
San Francisco
IDG World Expo

HOME ALL STORIES LATEST NEWS COLUMNS OPINIONS EDITORIALS GUEST VIEWS SHORT TAKES DATA WATCH SPECIAL REPORTS ZEICHICK'S TAKE SD TIMES 100 EDITORS' BLOG

RSS FEEDS

FACEBOOK

TWITTER

WHITE PAPERS JOB BOARD WEBINAR CENTER FREE SOFTWARE BZ RESEARCH ALMSHAREPOINT EVENTS CALENDAR PRINT/PDF EDITION PRINT/PDF BACK ISSUES

SUBSCRIBE TODAY CUSTOMER SERVICE EDITORIAL CALENDAR EDITORIAL BEATS GUEST VIEW GUIDE SD TIMES 100 GUIDE JOB BOARD EVENTS CALENDAR ADVERTISING REPORT A BUG SITE MAP

ABOUT US BZ MEDIA NEWS BZ RESEARCH SYSMANNEWS SPTECHCON PRIVACY POLICY CONTACT US

Printable version

HOME >> LATEST NEWS

Most Read Latest News Blog Resources

Kapow automates website data retrieval
Kapow Technology's Web Data Server 7.0 can be used to create modules that navigate through...

Telerik looks to boost 3D for Silverlight
In a new release of its RadControls component suite, the company introduced a 3D charting ...

Oracle's Fusion 11g lays groundwork for ERP platform
Fusion's components are standards-based and integrated, but some abilities are lost if non...

Telerik looks to boost 3D for Silverlight
In a new release of its RadControls component suite, the company introduced a 3D charting ...

Oracle's Fusion 11g lays groundwork for ERP platform
Fusion's components are standards-based and integrated, but some abilities are lost if non...

IBM emphasizes speed with new Milepost GCC compiler
The company has created an intelligent compiler that is designed to automatically optimize...

A knockout blow for Borland?
MicroFocus has upped its offer for Borland Software to $1.50, hoping to chase off a mystery suitor also pursuing the ALM vendor.

Is the mystery Borland suitor Serena?
Borland software is considering an offer from another company after a preliminary deal with MicroFocus. Is Serena the new company?

Windows 7 - An eBayer's dream product?
Windows 7 pre-orders can make people money on eBay.

“Smart” Software Compiles for Fast Continuous Integration So you’ve decided to pursue a more agile approach to software development and are now face...

Enterprise Continuous Integration Maturity Model Five levels, from Introductory to Novice, Intermediate, Advanced and Insane – it sounds li...

Lower Development Costs Without Staff Reductions or Outsourcing This white paper describes typical reactions to falling budgets and common problems they c...

Technorati

Digg

Slashdot

Facebook

Friendfeed

Twitter

del.icio.us

Web Tool Schools Developers on Security

By Jeff Feinman

May 15, 2007 —

Security Innovation released in mid-April TeamMentor, a Web-based application security learning and knowledge management system for software development.

TeamMentor is a repository of learning modules and secure development assets, such as coding practices, libraries and checklists, that are reusable across multiple development teams. The offering provides guidelines and vulnerability information—on an interface modeled around Google.

Peter Jenney, vice president of strategy for Security Innovation, said that developers could learn how to implement authentication systems by using TeamMentor. The tool can also teach developers how to build applications that are not susceptible to SQL injections, cross-site scripting attacks and buffer overflows. Jenney said the offering lays out countermeasures for vulnerabilities specific to different programming languages, and also provides references to outside sources, including Microsoft and OWASP, the Open Web Application Security Project.

“The earlier in the process that you catch a problem, the cheaper it is,” Jenney said. “Our strategy is to get this thing out in the field and to constantly fill it as we collect more information from the front lines, then get it into the knowledgebase. We’re going to have revisions of the product in the near future that provide defenses against vulnerabilities that just happened, rather than things that are already well known.”

Share this link: http://www.sdtimes.com/link/30643

A security community for developers At its conference today, RSA is launching the RSA Share Project, a website where portions of its encryption software will be available for free, and where developers can get guidance on security issues.

mValent adds PCI security to monitoring tool mValent has a new module for its Integrity configuration management software, which monitors ongoing configuration changes to an application. The software can now be modified to take PCI standards into account.

White House calls for coordinated cyber-security response President Obama will commission a cyber-security coordinator operating out of the White House.

Add comment

Name*
Email*
Country

Comment
Preview

HOME SITE MAP CURRENT ISSUE BACK ISSUES SUBSCRIBER SERVICES ABOUT US CONTACT US BZ MEDIA

Web Tool Schools Developers on Security

By Jeff Feinman

Related Articles

Add comment