Our open web development security standard, TSS-WEB, has helped many organizations over the years defining their own set of requirements for this area. Since web development and its security aspects changes quickly, we’ve completely revised the standard and have also … Continue reading
We are proud to release an updates version of our web security standard template TSS-WEB in both English and German language. Besides a few smaller fixes and changes, we modified a number of sections and updated many requirements (e.g. security … Continue reading
We at Secodis have developed extensive practical know-how in this field, especially for the Java stack and for various Web frameworks. If you need sound requirements or guidelines we do not start in a “green-field” but can use our existing … Continue reading
Finally, and after many months of work, the second edition of the popular book on applied Web application security by Matthias Rohr is now available as both hard cover and ebook. In this new edition Matthias has mostly focused on … Continue reading
We have been working really hard on a English version of our Web Security Standard Template TSS-WEB the last couple of months. Now we are happy to announce that we’ve finished th draft version. As of the German version it … Continue reading
In a new article in the German developer magazine Java Magazin by Matthias Rohr of Secodis, Christian Schneider and Matthias Pöpping outlines best practices for integrating security into agile development teams and processes. A teaser can be found here.
In June, Matthias Rohr will give a talk on this years OWASP AppSec EU on Practical Threat Modeling with Microsoft Threat Modeling Tool 2016. In his talk, Matthias will present his expierences with successfully using and enhancing this new tool … Continue reading
On this years JAX Conference, Matthias Rohr will give a speach on best practices for implementing security into the development process (Secure SDLC). The speach will be in German. Date: 23rd, April 2015, location: Rheingoldhalle, Mainz.
Finally it’s done! After many months of work the new book from Matthias Rohr is finally finished and will be available soon. In in, Matthias will give a full overview of the web application security field. In seperated sections it … Continue reading