August 2009
Approach to Business Impact Analysis
by Terence Cornelius, CISSP
Business impact analysis is the first step towards a comprehensive business continuity plan. Consequences, when business continuity is not met, can be severe. A well-executed business impact analysis (BIA) can make the difference between a fully developed, robust business continuity plan and a mediocre one.… more →
Insight into Web Application Firewalls - Part 1
by Manish Chasta
This article sheds some light on some of the important concepts pertaining to Web Application Firewalls (WAF). This is the first of the two articles in the series. In the first part we have introduced WAF to our readers. We have also looked at the Mod_Security Apache module as an example of WAF. Here, we would discuss the detail implementation of Mod Security Apache Module, while configuring connectivity between Apache Webserver and Tomcat container. We would also look at the installation of Mod_Security module on Apache.… more →
Best Practices for Protecting Banking Sites
by Terence Cornelius, CISSP
The scale of the global criminal operation on the internet has reached such proportions that Sophos discovers one new infected webpage every 4.5 seconds - 24 hours a day, 365 days a year. With statistics like that it is highly possible that at least one of your bank’s websites is already a victim. At least you should be wondering about the security of your websites very seriously. Nowadays, defaced banking websites or fraudulent sites posing as your website aren’t the only worry. Even your actual production website can be dangerous if hackers can get their hooks into it.… more →