Technology

Web security group classifies threats

Saying the terminology used to describe internet security threats has become "confusing and esoteric", a new industry consortium this week proposed a classification system to help security buyers and sellers.

Staff Writer July 29, 2004

The Web Application Security Consortium, formed in February with NT Objectives, Sanctum, SPI Dynamics and WhiteHat as members, suggests six broad types of attack, each of which have several sub-types.

For example, Command Execution attacks can be broken down into seven types, including buffer overflows, SQL injections, LDAP injections and format string attacks, the consortium said.

With the creation of the Web Security Threat Classification, application developers, security professionals, software vendors and compliance auditors have the ability to access a consistent language, the group said.

More Relevant

Analysis

SUN TAPS LSI FOR LOW-COST SPARC DESIGN AND FAB

Technology

AUSTRIALIAN GOVT MAY SELL OFF MORE OF TELSTRA

Analysis

TANDEM TAKES EPOCH NETWORK MANAGEMENT SOFTWARE

Analysis

ON Semiconductor introduces new multi-LED driver NCP1840

Sign up to the newsletter: In Brief

Your corporate email address *

First name *

Last name *

Company name *

Job title *

Vist our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

Thank you for subscribing

View all newsletters from across the Progressive Media network.

Sign up for our regular news round-up!

Sign up for our weekly news round-up!

Sign up to the newsletter: In Brief

I would also like to subscribe to:

Thank you for subscribing