“坚固软件宣言”要想成功,就需要得到软件开发社区的支持,仅有应用安全社区的支持是不够的。
For the Rugged Manifesto to succeed, it would need support from the software development community and not just from the application security community.
基础设施的开发是通过为应用程序创建数据库表和安全部署计划而进行的。
The infrastructure was developed by creating the database tables and the security deployment plan for your application.
对于许多开发机构来说,将风险管理应用到安全编程中是一个相对较新的想法。
For many development organizations, risk management as a discipline applied to secure programming is a relatively new idea.
在本文中,我们讨论了总体体系结构设计原则,以及使用IBM中间件开发安全且可配置的多租户应用程序的相关技术。
In this article, we looked at the overall architectural design principles and related techniques of developing a secure and configurable multi-tenant application by using IBM middleware.
惠普计划力推自行开发的应用,李艾科将业务分析和安全这两个领域列为该公司关注的重心。
HP plans on pushing its own applications, and Apotheker singled out business analytics and security as two areas on which the company will focus.
这比您先开始开发应用,然后来考虑安全问题容易得多。
It is much easier to implement security as you start an application then to try to add it in later on.
为了开发安全的Web应用你必须不断更新的所有层次和了解你的敌人。
In order to develop secure web applications you have to keep up to date on all layers and know your enemies.
与SQL注入攻击类似,如果使用最佳实践开发安全的应用程序,通常可以轻松地处理该威胁。
Like the SQL injection attack, you can often easily deal with the threat if you follow best practices to develop secure applications.
这也就是说,处于各技术级的开发人员都必须为整个应用程序的安全性负起自己应付的责任。
That said, developers at every level of the technology stack must take personal responsibility for the security of the entire application.
在本文中,我们主要集中讨论MIDP应用程序的安全性挑战以及当前可用的或处于开发中的解决方案。
In this article, we'll mainly focus on the security challenges and solutions currently available or in development for MIDP applications.
通常,他们不知道这一点,主要是因为他们在开发他们的应用程序时从未真正考虑到安全性。
Often, they don't know it, mainly because they never really give a thought to security when developing their applications.
当然不是所有的应用程序都会访问关键数据,但这些程序的开发人员确实能够通过加入访问控制来增强其应用程序的安全。
Certainly not all applications access critical data, but developers of those that do can enhance the security of their applications by building in access control.
我们还将开发一些EJB应用程序来演示各种安全性配置。
We also develop a few EJB applications to demonstrate the various security configurations.
但是,我认为更好的做法是,了解如何在任何情况下都能开发安全的应用程序,并随后注意何时应用特定的指导原则。
Instead, I think it's better to learn how to develop secure applications in any situation, and then note when specific guidelines apply.
GSSAPI的主要的优点是:一个使用GSSAPI开发的安全应用程序无需修改就可以在不同的安全机制上工作。
The main benefit of GSSAPI is that a secure application developed using GSSAPI can work over different security mechanisms without modification.
在结束部分,我们将总结使用J2ME技术开发用于最小型无线设备的高级安全应用程序的可行性。
In closing, we'll summarize the feasibility of developing advanced secure applications for the smallest wireless devices using J2ME technologies.
当关键数据被其他软件控制的时候,开发人员可以添加额外的应用程序层和数据级安全。
Developers can add an extra layer of application and data-level security when critical data is controlled by their software.
使用这项技术,可以在不用考虑安全问题的情况下开发JSF应用程序。
This technique lets you can develop your JSF applications without considering security issues.
应用程序开发组通常能认识到他们的应用程序需要某种程度的安全性。
Usually, application teams recognize that they need some amount of security in their application.
应用程序开发中GC的益处——包括指针安全、避免内存泄露以及使开发人员免于编写定制的内存管理工具——已经被很好地证明。
The benefits of GC to application development — including pointer safety, leak avoidance, and freeing developers from needing to write custom memory-management tooling — are well documented.
随着移动商业从时髦的口号逐渐变成现实,对于移动用户和无线应用程序开发人员这类人而言,事务安全性正在成为一个重要方面。
As mobile commerce becomes less of a buzzword and more of a reality, transaction security is becoming an important concern for mobile users and wireless application developers alike.
现在我们将注意力转移到应用程序开发人员和设计人员要构建安全的应用程序必须采取的操作上。
Now we turn our attention to the actions that application developers and designers must take to build a secure application.
因此,用GSS - API开发的安全应用程序可以在不同的安全机制上运行,不用改变应用程序。
Thus, a secure application developed using GSS-API can work over different security mechanisms without changes to the application.
遗憾的是,大多数软件开发人员从未知晓如何编写安全的应用程序。
Unfortunately, most software developers have never been told how to write secure applications.
批处理应用程序开发人员可以编写线程安全的、且在单个线程中执行的代码。
Batch application developers write code that is thread-safe and executes on a single thread.
应用程序安全是在软件开发中正在形成的一个重要的需求。
Application security is an important emerging requirement in software development.
我们必须把应用程序的安全性整合到软件开发的过程中。
Application security aspects must be integrated into software development process.
如果没有统一的策略,开发人员就要为每个网络应用程序重复实现定制的安全机制。
Without a unified strategy, developers re-implement custom security for each network application.
可以开发Web服务安全策略应用程序来让系统管理员为具有不同角色和职责的用户自定义设置。
You can develop a Web services security policies application to allow the system administrators custom the settings for users with different roles and responsibilities.
可以开发Web服务安全策略应用程序来让系统管理员为具有不同角色和职责的用户自定义设置。
You can develop a Web services security policies application to allow the system administrators custom the settings for users with different roles and responsibilities.
应用推荐