[WEB SECURITY] Security Analysis of the Core J2EE Patterns
Rohit Sethi
rklists at gmail.com
Thu Apr 23 14:41:33 EDT 2009
Hi list,
Security Compass is pleased to announce the launch of SecCom Labs at
http://labs.securitycompass.com - our site dedicated to free security
resources for software developers.
The first major contribution is a security analysis of the Core J2EE
Patterns. We reviewed every pattern and outlined common security
pitfalls and positive security practices based on our experience. Our
hope is that by analying security at the pattern level, we can help
spur secure software at the design phase. We'd really appreciate your
feedback!
We'll be presenting the paper at the RSA conference tomorrow morning
10:10 at Purple 310. We're bringing hard copies of the paper to
distribute at the talk, and we'd love to see you there.
Cheers,
--
Rohit Sethi
Security Compass
http://www.securitycompass.com
----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec
Have a question? Search The Web Security Mailing List Archives:
http://www.webappsec.org/lists/websecurity/archive/
Subscribe via RSS:
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA
More information about the websecurity
mailing list