In the past, securing custom written code has been typically an afterthought and usually not accounted for in the design of an application. These days, securing an application is not only critical for avoiding potential lawsuits, but also more widely accepted as worth investing resources into. With the advent of this new mindset and the fact that security has drawn such widespread attention from the media, we find ourselves (developers mostly) being asked to address potential security threats before code is placed into production.
We arent necessarily given any more time to create our applications, but yet we are expected to ensure they are secure. So how do we accomplish this? Well, a number of tools exist out there to analyze an existing (or in development) application by performing a surface scan of the applications endpoints e.g. Accunetix. However, what about addressing the security aspect as we write our code, or better yet, what about some libraries of code that we can include to make our applications secure without having to do additional work? In comes Microsoft to the rescue with some new offerings.
Managing Cross-Site Scripting Using CAT.NET and AntiXSS
Subscribe to:
Post Comments (Atom)
Posts
No comments:
Post a Comment