Application Security
What Does PCI Compliant Software Development Mean for Developers
PCI compliant secure software applications must be developed in accordance with industry best practices to meet PCI DSS software requirements.
Patching
PCI Compliance and Virtual Patching
Virtual patching is the process that mitigates a particular vulnerability in software without changing the vulnerable code.
Application Security
How to Perform Code Reviews for PCI Requirements
PCI DSS requirement 6.3.2 adds another level of information security to the application by requiring you to review custom code before release or production.
Application Security
Best Practices and Recommendations for API Security
API security is the preservation of the integrity of the APIs you own and use. APIs, like systems and applications, is one of the most popular ways microservices and containers communicate.
Application Security
PCI Web Application Security Requirements
PCI DSS guides how web applications and related systems that process, store or transmit cardholder data should be secured in compliance, specifically web application security.
PCI DSS Requirement 6
What is the Separation of Duties Principle and How Is It Implemented?
Separation of duties refers to applications in which the information or privileges required to complete a process are divided among multiple users so that no single person can perform or control it.
PCI DSS Requirement 6
What is XPATH Injection and How to Prevent It?
By deliberately sending malformed information to the application, the attacker can determine how XML data is structured or access data that would otherwise not be accessible.
PCI DSS Requirement 6
What is LDAP Injection and How to Prevent It?
LDAP Injection is an attack that is used to manipulate web-based apps that create user-input based LDAP expressions. When an application cannot correctly clear user login, it is possible to change LDAP statements using a Local Proxy.
Want to stay up to date with the latest news?
We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!