I think I could write about Web application security every hour of every day…there’s just so much involved with building secure apps, proper security testing, getting (and keeping) management on board and so on…But I wouldn’t want to torture you in that way. Anyway, here are a few bits you may be interested in:
Properly scoping your Web security assessments
The cure for many Web application security ills
How much Web security is enough?
As always, be sure to check out www.principlelogic.com/resources.html for links to my additional Web security whitepapers, podcasts, webcasts, books and more.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”