Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
HP SWFScan helps Flash developers protect applications
Posted on 24-Mar-2009 09:35 | Tags Filed under: News



HP has announced HP SWFScan, a free tool to help Flash developers protect their websites against unintended application security vulnerabilities and reduce the risk of hackers accessing sensitive data.

The company says as companies move to Web 2.0 technologies, including the Adobe Flash Platform and with Adobe Flash Player installed on more than 98 percent of Internet-connected PCs worldwide, it is imperative that web applications built with Flash technology are developed securely.

HP SWFScan allows Flash developers to deliver more secure code by being the first of its kind to decompile applications developed with the Flash Platform and perform static analysis to understand their behaviors. This helps identify vulnerabilities that lie under the surface of an application and are not detectable with traditional dynamic methods.

With HP SWFScan, Flash developers can check for known security vulnerabilities that are targeted by malicious hackers, including unprotected confidential data, cross-site scripting, cross-domain privilege escalation, and user input that does not get validated.

“The Adobe Flash Platform is being used more and more by large media companies and for business-critical applications. We are working with HP to make sure developers have tools to help secure content and keep customers safe,” said Brad Arkin, product security and privacy director, Secure Software Engineering Team, Adobe. “We worked with HP on their SWFScan tool, which will help Flash developers find potential security issues early in the development process so they can understand and prevent problems before web applications are ever deployed.”

HP analyzed almost 4,000 web applications developed with Flash software and found that 35 percent violate Adobe security best practices. Hackers can exploit this situation to circumvent security measures and gain unfettered access to sensitive information. HP SWFScan helps developers find and correct these problems before they become an issue.

“Applications developed with Flash technologies are no more immune to security vulnerabilities than any other web applications,” said Joseph Feiman, vice president and fellow, Gartner. “Giving Flash developers the ability to check whether their code is secure, providing guidance on how to fix it, and offering best secure-programming practices will help to protect businesses and their customers from hackers.”



More information: http://www.hp.com/go/swfscan...




comments powered by Disqus


Trending now »

Hot discussions in our forums right now:

New Vodafone Broadband Plans
Created by Naithin, last reply by antoniosk on 21-Oct-2017 17:15 (55 replies)
Pages... 2 3 4


Vodafone TV - Is this sky?
Created by wingbat45, last reply by richms on 20-Oct-2017 18:00 (84 replies)
Pages... 4 5 6


KRACK - WPA2 essentially cracked.
Created by michaelmurfy, last reply by Paul1977 on 20-Oct-2017 09:28 (76 replies)
Pages... 4 5 6


Amazing that some speciality shops in malls survive at all
Created by amiga500, last reply by richms on 20-Oct-2017 23:07 (14 replies)

Streaming of some All Blacks games on Allblacks.com for only $24.99!
Created by dazhann, last reply by vexxxboy on 22-Oct-2017 07:45 (30 replies)
Pages... 2


Windows 10 Fall Creators Update
Created by DjShadow, last reply by nzkiwiman on 20-Oct-2017 14:26 (32 replies)
Pages... 2 3


BBQ season is approaching again and I need a new one.
Created by gished, last reply by dafman on 23-Oct-2017 09:57 (65 replies)
Pages... 3 4 5


Labour Weekend 2017 Bargains & Deals - List them here!
Created by Stu, last reply by bmt on 23-Oct-2017 12:04 (42 replies)
Pages... 2 3