application development - News, Features, and Slideshows

News

• 

  WhatsApp switches on end-to-end encryption for all messages

  Facebook’s WhatsApp has completed the roll out of end-to-end encryption for the messaging app to protect all content transmitted between contacts.

  Liam Tung | 06 Apr | Read more

• 

  Salesforce erects Shield for better enterprise-app security

  Security has been an increasingly dominant theme in the enterprise software chorus in recent months, and on Tuesday Salesforce added a new voice to the mix with Shield, a set of platform services designed to help companies build secure apps.

  Katherine Noyes | 15 Jul | Read more

• Startup Twistlock seeks to padlock Docker containers

  As interest grows in applications deployed in containers, questions about their security are developing as well.

  Jeremy Kirk | 08 May | Read more

• 

  Think that software library is safe to use? Not so fast!

  In today's world of agile software development and fast release cycles, developers increasingly rely on third-party libraries and components to get the job done. Since many of those libraries come from long-running, open-source projects, developers often assume they're getting well-written, bug-free code. They're wrong.

  Lucian Constantin | 31 Dec | Read more

• Sonatype aims to help developers reduce risk from open-source components

  Software developers use a large number of open-source components, often oblivious to the security risks they introduce or the vulnerabilities that are later discovered in them.

  Lucian Constantin | 15 Nov | Read more

• Ruby on Rails gets patches for SQL injection vulnerabilities

  Two SQL injection vulnerabilities were patched in Ruby on Rails, a popular open-source Web development framework used by some high-profile websites.

  Lucian Constantin | 04 Jul | Read more

• 

  Researchers hope to secure development of mobile apps with faster code scans

  Fraunhofer Institute researchers are working to speed up the scanning of mobile app code for security flaws, aiming to offer developers in a few milliseconds the kind of analysis that once required an all-night scan of code.

  Peter Sayer | 10 Mar | Read more

• Hong Kong: Security, software development skills in higher demand

  Hong Kong IT pros knowledgeable about security and software development might have an easier time getting new jobs in 1H of 2014.

  Computerworld Hong Kong staff | 18 Feb | Read more

• Hackathon geared toward the 'liberation' of data from public PDF documents

  Massive amounts of unstructured data are held in the form of PDF documents, but extracting key figures and words out of PDFs in a programmatic manner can be difficult and costly. This poses a challenge to public-interest groups, journalists and others who are interested in running large-scale analyses on PDF documents in order to uncover valuable insights.

  Chris Kanaracus | 16 Jan | Read more

• Twitter now requires encrypted API communication

  Starting on Tuesday, the million or so third-party applications that use Twitter data must start encrypting all of their communications with the Twitter API (application programming interface), in order to improve security and maintain data integrity.

  Joab Jackson | 15 Jan | Read more

• Technology of the Year 2014: The best hardware, software, and cloud services

  InfoWorld's 2014 Technology of the Year Award winners recognize the best tools and technologies for developers, IT pros, and businesses

  Peter Wayner | 15 Jan | Read more

• Mozilla advises webmasters to implement X-Frame-Options security header

  In light of overall low adoption of HTTP security headers, Mozilla is advising webmasters to at least implement X-Frame-Options on their sites, arguing that this header can prevent several types of attacks.

  Lucian Constantin | 12 Dec | Read more

• Ruby on Rails security updates patch XSS, DoS vulnerabilities

  Ruby on Rails users are advised to upgrade to newly released versions of the Web development framework that contain important security fixes, according to the Rails development team.

  Lucian Constantin | 04 Dec | Read more

• Open-source software projects need to improve vulnerability handling practices, researchers say

  Many open-source software developers need to improve the way in which they handle vulnerability reports, according to researchers from security firm Rapid7, who recently found and reported vulnerabilities in seven popular open-source software applications.

  Lucian Constantin | 30 Oct | Read more

• Application-layer DDoS attacks are becoming increasingly sophisticated

  The number of DDoS (distributed denial-of-service) attacks that target weak spots in Web applications in addition to network services has risen during the past year and attackers are using increasingly sophisticated methods to bypass defenses, according to DDoS mitigation experts.

  Lucian Constantin | 22 Oct | Read more