• HOME
• COMPANY
  • About Aspect
  • Customers
  • Management
  • Careers
  • Contact Us
• SERVICES
  • About Aspect’s Services
  • Assurance Services
    for your application security verifications
  • Acceleration Services
    for your application security initiatives
  • Education and Training
• NEWS
  • Events
  • Press Releases
  • News
• RESOURCES
  • OWASP
  • White Papers
  • Case Studies

FOR IMMEDIATE RELEASE

CONTACT:

Bill Husted Aspect Security, Inc. 301-604-4882 (o) 301-775-5545 (m) bill.husted@aspectsecurity.com

Jeff Williams, Aspect Security CEO Invited to Speak on Securing Services at Secure Software Summit
Practical Advice and Patterns for Building and Using J2EE Services Securely

Columbia, MD - June 6, 2006

Most J2EE services and the applications that use them are not designed or built with security in mind. This presentation discusses a practical pattern for thinking about securing J2EE services. With many code examples and discussion of vulnerabilities, architects and developers will find much to think about in these slides.

"We're seeing a significant increase in the use of services and service-oriented architecture by our clients," said Jeff Williams, CEO of Aspect Security and the chair of the not-for-profit Open Web Application Security Project (OWASP) Foundation. "Developers need good patterns in order to know what the security concerns are and how to avoid them."

"Many organizations are still developing "innocent" code. That's code that was designed and built without much thought about the real threat environment where it will be deployed," said Jeff. "The challenge for many organizations is realizing that their software isn't really designed or built to withstand attack. With the recent mandatory disclosure laws in many states, we're seeing a marked increase in organizations that want to be sure that both their Internet-facing and intranet-facing applications are secure enough."

About Aspect Security, Inc.

Aspect Security, the application security specialists, delivers third-party security analysis, code review, and testing to verify the strengths and weaknesses of web applications, web services, and other software. Aspect also appraises an organization’s capability to develop, operate, and maintain applications securely. Aspect has verified hundreds of millions of lines of code for mission critical applications and has trained thousands of developers and managers to build and test secure applications. Aspect served as the authors of the OWASP Top Ten Web Application Vulnerabilities. Aspect’s core team has been providing application security services for over eight years, since before application security was a mainstream issue. Aspect is privately held and headquartered in Columbia, Maryland. To contact Aspect Security, call 301-604-4882, visit us on the Web at http://www.aspectsecurity.com, or write to info@aspectsecurity.com.