Application Security Audits
Software that is developed by corporations control enormous volumes of transactions that are worth large sums of money - often the applications main goal is to exchange information to keep a competitive advantages in the marketplace. Therefore, it is not unusual that less than honorably intentioned individuals or groups of individuals attempt and often succeed at subverting systems and redirecting all or part of the value of these transactions to themselves. A recent study sighted the following statistics:
| Security Concerns Among Security Professionals |
|---|
| Malicious Code | 26% |
| Loss of privacy/confidentiality (Abuse and misuse of data) | 25% |
| Electronic exploits (Cracking, eavesdropping and spoofing) | 20% |
| System unavailability (denial of service) | 20% |
| Other | 5% |
| Physical Security | 4% |
Based on a survey sponsored by ICSA.net and Global Integrity of 1,897 qualified subscribers to information Security magazine.
Toronix helps companies mitigate security risks by performing security audits on their existing application developed in-house or by a third party. Toronix specializes in auditing both application and system software including scripting, Java, J2EE, UNIX scripting and PERL to name a few.