Web Application Security: The Truth about White Box Testing versus Black Box Testing

  • Source: Cenzic
  • Written By:
  • Published:
  • (Originally Published On:) )
Information security managers, quality assurance staff, and developers are faced with the enormous responsibility of keeping Web applications secure from the ever-growing menace of hackers and internal threats alike. So how can they protect sensitive data without exhausting internal resources, overspending the budget, or being forced to use costly manual penetration testing using external consulting firms?

Featured Software Research:

Usability as an ERP Selection Criteria

  • Source: IFS
  • Written By:
  • Published:
Enterprise resource planning (ERP) software is often criticized for being complex and difficult to use—which puts up a barrier to receiving potential benefits. Systems with integrated search functionality and Web-like interfaces can make ERP solutions easier to use. Learn how to evaluate ERP software for its usability, so you can avoid investing in platforms that aren’t evolved toward usable and efficient interfaces. Read More

11 Criteria for Selecting the Best ERP System Replacement

An enterprise resource planning (ERP) system is your information backbone, reaching into all areas of your business and value chain. That’s why replacing it can open unlimited business opportunities. The cornerstone of this effort is finding the right partner. And since your long-term business strategy will shape your selection, it’s critical that your ERP provider be part of your vision. Read More

You may also be interested in these related documents:

A Guide to Software Test Methodologies: Pros, Cons, and Arguments

This guide to software test methodologies presents various approaches and their effectiveness for software testing, compares the limitations and benefits of each, and explains why each one has its place, depending on the software development phase in question. Download the full guide now. Read More

Achieving PCI DSS, SOX, and HIPAA Compliance through Comprehensive IBM WebSphere MQ Auditing

The result of implementing middleware products such as WebSphere MQ (WMQ) “out-of-the-box” without security measures has led to increased risk of failed audits on various regulatory measures. The need for auditing, penetration testing, and remediation of critical middleware structures to assure regulatory compliance and provide internal security methods beyond traditional perimeter security methodologies is paramount. Read More

The Truth about Agent versus Agentless Monitoring

Monitoring servers, environments (physical and virtual), platforms (AIX, Solaris, Windows, VMware, HP/UX, Linux, Novell), applications (e-mail, Web, CRM, ERP, e-commerce), and services (service level agreements) is critical for IT departments. But it can be a daunting task to find the right monitoring solution. This paper examines the differences between agent and agentless monitoring, to help you make the right decision. Read More
 
comments powered by Disqus