The SNMP protocol was introduced in 1988. Overtime security had been added (1991-1992). Also several version improved versions have been published (SNMPv2[1] and SNMPv3[4]) The goal is to allow automation of network management by establishing a standard protocol supported by all network devices for configuration and monitoring.

Using SNMP enabled devices network administrators can automate the tedious and error prone task of changing the configuration of the network by using an administration interface which in turn will automatically re-configure each device on the network using SNMP. By having a unified protocol a single administration application can manage an entire network of heterogeneous devices.
Read the rest of this entry »

• 0 Comments

Sun and Amazon Web Services opened a private beta program starting on May 5, 2008. Approved beta users get access to OpenSolaris™ operating system (OS) at http://www.opensolaris.org/ on Amazon Elastic Compute Cloud (EC2). OpenSolaris on Amazon EC2 is an Amazon Web service that incorporates hardware virtualization technologies based on the Sun™ xVM software and the Xen open source community work. Information about Amazon EC2 is located at: http://aws.amazon.com/ec2
Read the rest of this entry »

• 0 Comments

Everybody is now talking about Web 2.0, a Web that is more dynamic, richer, more interactive, and, ultimately – much more exciting than anything we know now. It’s just human nature to look for unusual and new stuff. But, what does that mean for business applications?

Let’s look at Google Maps. Yes, we are all excited by Google Maps. It looks great. It is very interactive. And, most importantly, it behaves completely differently from what we expect to see in a “normal” browser. But, compared to any realistic business application – say something like trivial Internet banking – Google Maps is nothing. It supports just a few use cases compared to the hundreds or thousands of use cases for a typical business application.
Read the rest of this entry »

• 0 Comments

Telecommunications security (of voice, data, and/or video communications) is the prevention of any type of intrusion to (that is, either unauthorized or malicious access to or use of) your company’s telecommunications equipment by some party. Your company’s “telecommunications equipment” includes both this Avaya product and any other voice/data/video equipment that could be accessed via this Avaya product (that is, “networked equipment”).
Read the rest of this entry »

• 0 Comments

In most scientific disciplines, the majority of academic papers are written collaboratively. They also tend to undergo several rounds of revision, with new content often being added after peer review and style and format reworked for target journals. Currently, this tends to involve emailing versions of the document between authors, or storing versions on shared drives. However, a new breed of online applications that mimic the functions of desktop applications could change the process of producing a scientific paper.
Read the rest of this entry »

• 0 Comments

The most striking technology application in this century is the impact of web on the human life. The current period has witnessed the increased use of web to a greater extent and the Web 2.0 has made the cyberspace as the global information space. Web 2.0 is a collection of technologies and services that allow increased user-creator interaction, content syndication, advancements in web-based user interfaces, which ultimately lead to the creation of an entirely new application platform.
Read the rest of this entry »

• 0 Comments

Web 2.0 – user-generated content, rich user interfaces and co-operative, dynamic services – has also brought with it a new and extremely virulent breed of ‘Malware 2.0’. A key motivation for this study is the link between Web 2.0 and the increase in ‘drive-by’ malware infections requiring no intervention or awareness on the part of the user. To give some idea of the threat posed, a Scansafe report analysing malware trends reports that risks from compromised websites increased 407% in the year to May 2008.
Read the rest of this entry »

• 0 Comments

The web 2.0 concept is not sufficiently defined to allow a critical discussion of it, but we can discuss AJAX (asynchronous Javascript and XML). This concept, which underpins many web 2.0 sites, repackages and applies existing technologies to achieve a new structure for internet applications. Unfortunately, increased flexibility creates conditions for new security problems.

To understand how AJAX alters the security landscape for web application testing it is necessary to show the fundamental differences between it and traditional internet application models.
Read the rest of this entry »

• 0 Comments