GRUC Webcast on May 28: Making the Business Case for Mobile Application Security: Practical Examples from IBM's Analysis of Major Mobile Applications
JackSchneiderCO 270007HB0G Visits (370)
LIVE TWEETING DURING THE WEBCAST! USE #GRUCMobile TO FOLLOW AND SUBMIT QUESTIONS AND COMMENTS TO OUR SPEAKER
Does your company test its mobile applications for security vulnerabilities? A recent Ponemon Institute report found that 77% of organizations believe that it's hard to secure mobile applications. That's one of the primary reasons why fewer than half of organizations actually test their apps for security flaws. But, at what cost?
In this session, we'll examine vulnerabilities that were detected by the IBM X-Force security intelligence team in real-life mobile apps and frameworks, and we'll dig deeply into results from our recent research that was conducted on vulnerabilities associated with more than 40 top online dating applications.
We'll also conduct a live demo that shows you how you can conveniently scan mobile applications, and utilize results to fix detected vulnerabilities and integrate best practices into your Secure Software Development Life Cycle (SDLC).
Eitan Worcel, Product Manager - AppScan Cloud Services
Eitan Worcel is an experienced software developer, with years of experience in the Application Security field. His development expertise is currently leveraged in his role as Product Manager for IBM Security AppScan Cloud-based Services. Throughout his career, Eitan's worked with a wide range of customers, supporting them in their quests to build secure web applications. The IBM product line he manages helps users to protect their valuable web and mobile applications.
***Dial in codes will be sent a few minutes before the webcast and posted in the online meeting. Please check your email before 12:00 PM (sender is
By registering for this webcast you are allowing the GRUC to provide your information to IBM and/or webcast sponsors for direct contact regarding IBM products and promotions. You will also receive a complimentary membership to the Global Rational User Community.
vjagadeesh 2700063KJN Visits (632)
Socket recording script correlation in Rational Performance Tester (RPT):
In RPT, the script which is recorded using socket recording do not contain information in request and response format. The recorded script is in send and receive format. Information recorded in the send and receive format is basic in nature, meaning the information is either in binary, ASCII or Hex.
Correlation of these values manually is difficult. The binary data need to be converted to ASCII format before the correlation is performed. Dynamic values are dependent on both the application type and the encoding format used in the application. Hence the correlation in binary format is not done.
Correlation of ASCII format is handled like normal manual correlation.
. The value is searched in the reponse content of the receive message.
. A reference is created, for the ASCII value.
. This is replaced in the send requests in the script.
Sometimes, hex codes are also considered for correlation. Here the hex codes in the receive format are manually converted to ASCII format and the relevant values are considered for reference. Once the reference is created, this is replaced in the send request, as done in ASCII format.
This topic covers the basic of correlation of scripts recorded using socket protocol, using RPT.
vinayhs 270002JFCW Visits (772)
AcdntlPoet 2700019V2G Visits (777)
IBM Rational DOORS Next Generation: Working with baselines- In this video we learn how to work with baselines in IBM Rational DOORS Next Generation V6.0.
AcdntlPoet 2700019V2G Visits (729)
IBM® UrbanCode Deploy is widely used in IBM to automate the deployment of applications and it needs a License Server configured with the UrbanCode Deploy keys. Rational License Server provides access tokens and keys to client systems in order to enable licensed software to run on them.
Read on to learn how to install a Rational License Server on AIX for UrbanCode Deploy