Many organizations have tightened their website and computer security in light of an evolving threat landscape. However, the winners of the cybersecurity arms race in 2013 may be those that implement effective software security practices for their web applications. According to CSO Online columnist Patrick Budmar, security measures such as firewalls aren’t able to adequately protect web apps from hackers, and this places a high value on ensuring that the software is coded properly.
Kane Lightowler, regional sales director for security software provider Imperva, told CSO that he has seen growing industry concern for application security. One of the challenges he recognized was that many businesses are hesitant to adopt robust solutions designed specifically for security when faced with limited budgets. He suggested that software developers must practice due diligence in regard to all projects to manage development costs while ensuring software security.
Some of the most common threats to web applications, according to TechTarget writer Moriah Sargeant, stem from software design mistakes. Cross-site scripting attacks remain the most prevalent threat, with a 55 percent chance any given website is vulnerable. Mike Shema, director of engineering at Qualys, told the news source developers should carefully evaluate both their coding and bug-fixing practices.
Software news brought to you by Klocwork Inc., dedicated to helping software developers create better code with every keystroke.