Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
HP SWFScan helps Flash developers protect applications
Posted on 24-Mar-2009 09:35 | Tags Filed under: News



HP has announced HP SWFScan, a free tool to help Flash developers protect their websites against unintended application security vulnerabilities and reduce the risk of hackers accessing sensitive data.

The company says as companies move to Web 2.0 technologies, including the Adobe Flash Platform and with Adobe Flash Player installed on more than 98 percent of Internet-connected PCs worldwide, it is imperative that web applications built with Flash technology are developed securely.

HP SWFScan allows Flash developers to deliver more secure code by being the first of its kind to decompile applications developed with the Flash Platform and perform static analysis to understand their behaviors. This helps identify vulnerabilities that lie under the surface of an application and are not detectable with traditional dynamic methods.

With HP SWFScan, Flash developers can check for known security vulnerabilities that are targeted by malicious hackers, including unprotected confidential data, cross-site scripting, cross-domain privilege escalation, and user input that does not get validated.

“The Adobe Flash Platform is being used more and more by large media companies and for business-critical applications. We are working with HP to make sure developers have tools to help secure content and keep customers safe,” said Brad Arkin, product security and privacy director, Secure Software Engineering Team, Adobe. “We worked with HP on their SWFScan tool, which will help Flash developers find potential security issues early in the development process so they can understand and prevent problems before web applications are ever deployed.”

HP analyzed almost 4,000 web applications developed with Flash software and found that 35 percent violate Adobe security best practices. Hackers can exploit this situation to circumvent security measures and gain unfettered access to sensitive information. HP SWFScan helps developers find and correct these problems before they become an issue.

“Applications developed with Flash technologies are no more immune to security vulnerabilities than any other web applications,” said Joseph Feiman, vice president and fellow, Gartner. “Giving Flash developers the ability to check whether their code is secure, providing guidance on how to fix it, and offering best secure-programming practices will help to protect businesses and their customers from hackers.”



More information: http://www.hp.com/go/swfscan...

comments powered by Disqus




Trending now »

Hot discussions in our forums right now:

The President Of The USA: Donald Trump
Created by TimA, last reply by Fred99 on 24-Feb-2017 10:21 (3283 replies)
Pages... 217 218 219


Mikrotik RB 3011 multiple port flapping (Title updated)
Created by RobBB, last reply by RunningMan on 22-Feb-2017 21:54 (57 replies)
Pages... 2 3 4


Vodafone / SKY merger
Created by wingbat45, last reply by richms on 24-Feb-2017 08:56 (134 replies)
Pages... 7 8 9


"Parents' lawsuit claims FaceTime caused daughter's death"
Created by kingdragonfly, last reply by richms on 23-Feb-2017 11:03 (23 replies)
Pages... 2


Android (FB) Messenger App Bugs/Issues
Created by TimA, last reply by tripp on 21-Feb-2017 19:45 (20 replies)
Pages... 2


SureSignal missed calls
Created by hairy1, last reply by froob on 23-Feb-2017 20:23 (19 replies)
Pages... 2


geekzone ads are out of control
Created by 1101, last reply by DarthKermit on 23-Feb-2017 02:11 (57 replies)
Pages... 2 3 4


Best way to network my computers
Created by Rikkitic, last reply by 1101 on 24-Feb-2017 09:28 (73 replies)
Pages... 3 4 5