(Length: 4 pages)

March 25, 2004

Keeping Developers Out Of Security

Misinformation Perpetuates Short-Sighted Application Security

by Randy Heffner

with Kimberly Q. Dowling

Executive Summary (This is a document excerpt)

A recent example of application security misinformation comes from XML security gateway vendors that say companies must have a separate XML security layer to keep application developers out of security. It is the right idea to keep developers out of security, but you can do this without a separate, disconnected security layer. Besides, a separate security layer presents numerous challenges for consistent enforcement of security policy. The right strategic answer is to integrate security for XML and other access channels with the security of the underlying application platform. A practical implementation strategy will start with unified identity and proceed in stages from there.

Buy Risk-Free

Download and print PDF immediately. Price: US $379

Our Money-Back Guarantee: If you are not completely satisfied, return it for a full refund within three weeks of your online purchase.

Already a Forrester Client?
Log in to read this document.

Add to cart

Find Documents In Related Categories
This document falls under the following categories. Click on a link below to find similar documents.
Analyst: Randy Heffner
Technology: Application Development, Application Security, Infrastructure Security, IT Management, IT Strategy, Planning, & Governance, Security & Risk, Security Program Governance
Geography: Asia Pacific, Europe, North America
Upcoming Teleconference:
Jam Session No. 4: Protecting And Promoting Innovation
Thursday, December 04, 2008
corner border corner
Ratings and Comments
NOT YET RATED
corner border corner