Articles & Tutorials 
-
It is important for a business to understand the fundamentals of running a vulnerability assessment in order to determine how one will be run and what can be expected from the results. A web application security scanner can automate the process, but a quality assessment may still require actual human eyes to catch specific issues. Learn more about the whys and hows of vulnerability assessments.. 
-
In this second part of a two-part series, you will learn about application security issues related to authentication and authorization, as well as five vulnerabilities commonly found in ASP.NET web-based applications. Additionally, find out how to keep configuration files from being unintentionally modified by uninformed programmers or administrators, as well as why it is critical to never rely on default setting values..
-
In part one of this two part article, you will learn about five of the top ten “worst offenders” of misconfigurations of application security that can cause overall problems for ASP.NET Web-based applications. Learn more about how to secure the Web.config files of an ASP.NET application..
-
Service-oriented architecture is a hot topic in today’s business world, and it can provide many key benefits. It is important to look at service-oriented architectures from both a real-world perspective as well as a technical perspective to gain a complete understanding of this new concept. Read more about service-oriented architecture and learn how it can add functionality to Web-based applications and save developers time over the long term..
-
Ajax programming, which allows a web page to refresh a small portion of its data from a web server, is an exciting technology that has recently been introduced. However, this type of programming can also leave applications open to SQL injection and similar attacks. Learn more about Ajax programming and what it means in terms of security..
-
Explore the source of the common interoperability challenges facing Web services integration across platforms. This third part in a series describes how the different naming conventions between J2EE technology and .NET can cause difficulty in Web services interoperability..
-
Part 2 of this series explores the source of common interoperability challenges facing Web services integration across platforms. Follow along as Wangming Ye analyzes the interop failures resulting from the use of certain data types and ways to overcome them such as collections, arrays, or primitive data types..
-
Weaving together Web services to create cross-organizational business processes requires all partners to program to the same standard model and to avoid exposing proprietary implementations. However, the ultimate goal of making Web services interact seamlessly is still a frequent concern and a hot discussion topic. The first part of the series stresses the importance of WSDL design and analyzes the strength and pitfalls of the traditional RPC/encoded style in Web services interoperability. .
-
Learn how to implement the new Google Web Service and take advantage of its powerful searching features in your VB.NET program..
-
One of the most important issues to consider when implementing a commercial web service is authentication. In this third installment in our series, we consider the most common approaches and decide which is most suited for our example service..
-
In this second article in our series, we describe the functionality that our web service will provide and identify the issues that we will need to address..
-
To create an intelligently designed web services, it is important to understand the architecture that is available to support them. This article lays out the foundation on which our sample web service will be based..
-
The term web service has been used quite frequently lately: you hear people saying how good web services are and how they will dominate the future of software development, but what exactly are web services and how can we create them? In this article James shows us how to build two web services and also unravels all of the lingo surrounding web services..
-
Passing complex data types to and from Web Services without losing data integrity.