Palisade Magazine
 
SMS Banking

September 2005

SMS Banking

by Sachin Shetty, CCNA, BS7799 LA

When people are hard pressed for time, the need for “anytime anywhere” banking gains utmost importance. Bearing this in mind, banks provide a novel service which gives retail customers account information and real-time transaction capabilities from their cell phones. In this article we understand a typical SMS banking setup… more →

Code Obfuscation - Part 2: Obfuscating Data Structures

by Sonali Gupta, SANS, GCIH

Continuing from the earlier parts in this article series, Sonali looks at data obfuscation, a class of obfuscation techniques that targets the data structures in a program. She presents the different methods of data obfuscation with examples and also analyzes their quality… more →

Understanding SSL

by Shalini Gupta

What come to the mind when you think of a secure web application? SSL. How does SSL work? Does SSL offer complete protection? This article tries to answer some of these questions. We’ll discuss about how SSL works and what it actually protects against and what it does not… more →

QuizQuiz: Session IDs

When is the best time to assign session ids?

  1. Have a single session id for a complete browser instance.
  2. Assign a session ID to a user on the login page.
  3. On logout change the session ID to a new value.
  4. Assign a session id after authentication, change it at logout.

more →

Review: Inside the Spam Cartel

by Spammer-X, Jeffrey Posluns (Editor)

This is a fascinating book on the workings of the spam industry. Written by an insider, it provides excellent information on how spammers create spam, bypass spam filters and get their spam mails read.… more →

On the blog recently

Past quizzes

  • Sep '05 : When is the best time to assign session ids?
  • Apr '09 : Which of the following are the best practices for securing PHP applications?
  • Feb '06 : Which of these is not a good strategy for handling secrets in .Net?
  • Dec '06 : Your Internet Banking site is fully SSL enabled. Login-page, Account summary page and Fund transfer page are all HTTPS enabled. When you bank online - login, check your account summary and do a fund transfer, is SSL authentication and handshake happening separately for each page or is it one handshake for all the three pages?
  • Oct '04 : How can an application ensure that its pages are not cached or left on the client after a user has logged out?

Search this website

 Search website

Stay Informed

Want to know when the new issues are out? Just fill in your details, we will take care of notifying you when new issues are released:




Subscribe  Unsubscribe

Write to Us

All flowers, brickbats and suggestions are welcome. You can put in yours on the feedback page.

News & Events

  • 03.03.10. Binu Thomas, CTO Plynt, presented at the RSA Conference 2010 on the topic “Application Security Across the Enterprise: Lessons from the Trenches”. This is the fifth time Paladion has been invited to present here.
  • 25.12.09. Plynt has been selected as a finalist for Red Herring’s Global 100 award, a prestigious list honoring the year’s most promising private technology ventures from around the world.
  • 10.12.09. Deloitte Fast 50 India features Paladion 4 years in a row. The ranking of the 50 fastest growing technology companies places Paladion in the 19th spot.
  • 21.05.09. ICICI Bank and Paladion Have Been Awarded the Best Banking Security Systems Project by the Asian Banker IT Implementation Awards Program
  • 20.04.09. Info Security Products Guide Names Plynt Certification Program Winner of the 2009 Tomorrow’s Technology Today Award