Interstell, Inc.

Security, Application Security, and Software Research

Category: Application Security

Where Does a Developer Even Start?

One Day, It Dawns on You… Let’s say you’ve developed code for awhile. If a Project Manager, business partner, boss, or someone else with requirements comes to you, you can convert their business-speak into technical requirements. You can turn those requirements into an application that gets the job done. Customers love the results of your labor! As the accolades roll in, you’re probably feeling pretty confident. Then you read an article […]

Continue Reading →

Talking with Security Doubters

Surrounded by Doubt… In my last post, I talked about a scenario designers and developers know all too well: well-meaning management, project managers, architects, and business staff who don’t believe security is important — or don’t believe it’s important enough to warrant your time. Many of these doubters have direct input into the amount of effort you can spend on a project. If you’re a developer who knows what can happen when you […]

Continue Reading →

Security: Not Just for Banks Anymore!

Let’s say you’re a responsible corporate citizen. You want to retain customers and attract new customers. Maybe you architect applications, maybe you design them, or maybe you code them. If you’ve every brought some aspect of application security — say, you point out it’s a really good idea to disallow cross site scripting (XSS) — I bet you’ve run into opposition like: We’re not a bank! We don’t need all […]

Continue Reading →