Craft a SaaS-oriented vulnerability mitigation policy
Put a policy and tools in place to quickly bring secure apps to production
From the developerWorks archives
Date archived: November 29, 2016 | First published: January 12, 2012
Many businesses and industries depend on web-based software to run business processes, conduct transactions, and deliver services to customers. When a deadline looms, organizations may get frantic and sacrifice secure features to bring the application into production. This is a fast (and reactive) solution that results in a usually defective application. A better, proactive solution is to create a SaaS-oriented web application vulnerability mitigation policy (and employ a SaaS-based vulnerability scanner) into place that anticipates application vulnerabilities and has several solutions to repair them ready to go. The author will provide a roadmap to such a policy and illustrate using a scanner tool in the form of IBM® Rational® AppScan products.
This content is no longer being updated or maintained. The full article is provided "as is" in a PDF file. Given the rapid evolution of technology, some steps and illustrations may have changed.