Palisade Magazine
 
Secure your sessions with Page Tokens

August 2005

Secure your sessions with Page Tokens

by Sangita Pakala, GCIH

Learn how page tokens can enhance the security of your applications beyond the regular session tokens that you already use. We explain a stronger system of session management that critical apps can use today… more →

Code Obfuscation

by Sonali Gupta, SANS, GCIH

Source code is often distributed in an insecure manner. Java and .NET programs retain practically all the information of the original source code. This makes them much easier to reverse engineer than traditional applications which are distributed as native code. It is essential to protect an application against reverse engineering. In this article we will look at code obfuscation… more →

Using browser refresh to expose passwords

by Balaji V

The back, forward and refresh buttons of the browser can be used to steal the password of a previous user. In this article we examine the vulnerability and look at ways to solve them… more →

QuizQuiz: Secure Socket Layers

What kind of attacks does SSL prevent?

  1. SQL Injection
  2. Sniffing
  3. Variable Manipulation
  4. Phishing Attacks

more →

Review: Apache Security

by Ivan Ristic

According to Netcraft’s August 2005 Web Server Survey, 70% of the websites use the Apache web server. They will benefit from this book.… more →

On the blog recently

Past quizzes

  • Feb '09 : Which of the following aspects in an ASP.NET application would not help mitigate the risk of CSRF attacks?
  • Jun '05 :
  • Aug '06 : An attacker enters a long nasty looking string into the date field. The input overwrites parts of the running program and executes commands on the server. What type of attack just took place?
  • Jul '08 : A new proposal has been formed by W3C, to incorporate Web 2.0 developer's demands, by allowing cross site requests. Which among the following is the said proposal?
  • Aug '04 : How should an application generate, store and dispatch non-HTML content to the user's browser?

Search this website

 Search website

Stay Informed

Want to know when the new issues are out? Just fill in your details, we will take care of notifying you when new issues are released:




Subscribe  Unsubscribe

Write to Us

All flowers, brickbats and suggestions are welcome. You can put in yours on the feedback page.

News & Events

  • 03.03.10. Binu Thomas, CTO Plynt, presented at the RSA Conference 2010 on the topic “Application Security Across the Enterprise: Lessons from the Trenches”. This is the fifth time Paladion has been invited to present here.
  • 25.12.09. Plynt has been selected as a finalist for Red Herring’s Global 100 award, a prestigious list honoring the year’s most promising private technology ventures from around the world.
  • 10.12.09. Deloitte Fast 50 India features Paladion 4 years in a row. The ranking of the 50 fastest growing technology companies places Paladion in the 19th spot.
  • 21.05.09. ICICI Bank and Paladion Have Been Awarded the Best Banking Security Systems Project by the Asian Banker IT Implementation Awards Program
  • 20.04.09. Info Security Products Guide Names Plynt Certification Program Winner of the 2009 Tomorrow’s Technology Today Award