SecurityRatty: tag: xml

Web Services and XML Security Training at OWASP

2008-08-28 08:55:59 by Gunnar Peterson in 1 Raindrop

...XML Security training at OWASP's AppSec conference in NYC, Sept 22-23. Web services provide the backbone that integrates many things in the enterprise from application servers, databases, ERP, and CRM. Increasingly we are seeing Web services in more B2C roles with Rest, Federation and other technologies. The class looks at how Web services...

Tags: security, soa security standards, security standards, soa security, soa, security critical environment, information security, information, application security principles

SafeNet intros Luna XML Hardware Security Module

2008-04-15 00:00:00 by HASH0x8b44a18 in Network World on Security

SafeNet announced the availability of its Luna XML Hardware Security Module (HSM), claimed by the company to be the world's easiest to deploy and integrate HSM for web services applications and transaction security

Tags: web services applications, safenet, transaction security, hsm, deploy, availability, world, company

Intellisense for XML config files broken in VS 2008?

2008-05-22 08:55:00 by Keith Brown in Security Briefs

...XML|Schemas to see if the schema was in place, and indeed I have DotNetConfig.xsd listed in there for an empty namespace, and it's got the little green checkmark by it, which makes me think VS recognizes that this is the schema it's supposed to use, but still no joy. There are a few other schemas listed here (DotNetConfig30.xsd, for example),...

Tags: intellisense, namespace, namespace declaration, empty namespace, config files, xsd, schema, xml, dotnetconfig

Intellisense for XML config files broken in VS 2008?

2008-05-22 14:55:00 by keith-brown in Security Briefs

...XML|Schemas to see if the schema was in place, and indeed I have DotNetConfig.xsd listed in there for an empty namespace, and it's got the little green checkmark by it, which makes me think VS recognizes that this is the schema it's supposed to use, but still no joy. There are a few other schemas listed here (DotNetConfig30.xsd, for example),...

Tags: intellisense, namespace, namespace declaration, empty namespace, config files, xsd, schema, xml, dotnetconfig

Intellisense for XML config files broken in VS 2008?

2008-05-22 14:55:00 by keith-brown in Security Briefs

...XML|Schemas to see if the schema was in place, and indeed I have DotNetConfig.xsd listed in there for an empty namespace, and it's got the little green checkmark by it, which makes me think VS recognizes that this is the schema it's supposed to use, but still no joy. There are a few other schemas listed here (DotNetConfig30.xsd, for example),...

Tags: intellisense, namespace, namespace declaration, empty namespace, config files, xsd, schema, xml, dotnetconfig

Choosing the right XML security appliance

2008-08-05 00:00:00 by HASH0x8b494c4 in Network World on Security

As companies embark on efforts to build loosely coupled service-oriented architectures they inevitably have to tackle the issue of securing their SOA service infrastructure, and many turn to XML security appliances to get the job done

Tags: xml security appliances, soa service infrastructure, companies embark, inevitably, architectures, job, issue, tackle, efforts

Linux vendors patch XML parser

2008-11-20 00:00:00 by Jason Meserve in Network World on Security

Most of the major Linux vendors have released patches for a pair of bugs in libxml2, an XML C parser and toolkit developed for the Gnome project. Both bugs could be exploited in a denial of service attack against systems that rely on the libxml2 module. Ubuntu, Mandriva, rPath and Debian are all out with patches today to remedy the problem

Tags: libxml2 module, libxml2, major linux vendors, parser, bugs, xml, gnome project, service attack, patches

The Economics of Finding and Fixing Vulnerabilities in Distributed Systems

2008-11-18 22:47:55 by Gunnar Peterson in 1 Raindrop

...XML were deployed so that Microsoft could talk to Java and so Websphere could talk to Weblogic and so on. And, oh yes, SOAP and XML were used to connect B2B networks so partners in a supply chain and business process can exchange data and interoperate. SOAP and XML present a fundamentally new programming model based on a message document...

Tags: information security, information, information security spends, safety information security, versus information security, information security budgets, information security budget, software security, software security space

Orkut XSS Worm

2007-12-20 16:18:37 by RSnake in ha.ckers.org web application security lab

...xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 300 Proxy-Connection: keep-alive Content-Type: application/x-www-form-urlencoded Referer:...

Tags: orkut, worm, post, community, orkut community, post scrapbook, xss worm, post requests, worm code

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo