Palisade Magazine
 
Web Services Security - The Basics

April 2010

Web Services Security - The Basics

by Santosh Jadhav

Wiki defines Web services as “Application programming interfaces (API) or web APIs that can be accessed over a network, such as the Internet, and executed on a remote system hosting the requested services”. So putting this down in simpler words, it is a function of the application that can be made available for use for other developers to integrate it into their applications.… more →

Insight into Web Application Firewalls - Part 2

by Manish Chasta

In the previous article, we discussed about the basics of WAF, procedure to connect Apache with Tomcat and the installation part of ModSecurity. We took ModSecurity (an open source WAF) to understand the detailed aspects of the WAF. In this article, we look at the configuration part of a WAF. We will create some simple as well as complex rules to filter HTTP traffic. We would also discuss the use of Regular Expressions to create complex rules.… more →

Secure coding techniques in ASP.NET - Part 2

by Jaideep Jha

In continuation of the secure coding techniques in ASP.NET series we will be talking about another programmatic implementation of the anti-CSRF token, and protection against session fixation attacks.… more →

On the blog recently

Past quizzes

  • Jun '07 : Which of the following is/are required as safe authentication controls at login page?
  • Nov '05 : Our applet implements an algorithm that's proprietary and a trade secret. How do I protect the algorithm from getting stolen at the browser?
  • Jul '04 : What is the cryptographic technique to use for transmitting passwords during authentication?
  • Apr '09 : Which of the following are the best practices for securing PHP applications?
  • Jul '06 : Which of these techniques helps in preventing passwords being stolen from the browser?

Search this website

 Search website

Stay Informed

Want to know when the new issues are out? Just fill in your details, we will take care of notifying you when new issues are released:




Subscribe  Unsubscribe

Write to Us

All flowers, brickbats and suggestions are welcome. You can put in yours on the feedback page.

News & Events

  • 03.03.10. Binu Thomas, CTO Plynt, presented at the RSA Conference 2010 on the topic “Application Security Across the Enterprise: Lessons from the Trenches”. This is the fifth time Paladion has been invited to present here.
  • 25.12.09. Plynt has been selected as a finalist for Red Herring’s Global 100 award, a prestigious list honoring the year’s most promising private technology ventures from around the world.
  • 10.12.09. Deloitte Fast 50 India features Paladion 4 years in a row. The ranking of the 50 fastest growing technology companies places Paladion in the 19th spot.
  • 21.05.09. ICICI Bank and Paladion Have Been Awarded the Best Banking Security Systems Project by the Asian Banker IT Implementation Awards Program
  • 20.04.09. Info Security Products Guide Names Plynt Certification Program Winner of the 2009 Tomorrow’s Technology Today Award