There's been a flurry of discussion this week among Internet and Web standards heavy-hitters around WebSocket, the new communications protocol supported in Chrome 4 and Safari 5. What was the main issue? Is there some kind of fundamental security vulnerability with the WS protocol? Web...

Critical vulnerabilities have been identified in ColdFusion v8.0.1 and earlier versions, and JRun 4.0. Adobe has now patched them with a Security Update released on August 17, 2009. Here are the details...

Most ColdFusion applications that require users to be authenticated follow the pattern laid out in the official ColdFusion documentation and in the ColdFusion MX Developer's Guide.

Despite what your parents told you, sharing is not always a good thing. However, if you provide a shared hosting environment, here are some tips on making it more secure.

How secure are your applications? Public-Key encryption may be the solution when security really matters. If you have developed an application that requires user authentication, you have undoubtedly wrestled with varying levels of security.

All data-driven Web sites are potentially vulnerable to hackers, whether they are written in ColdFusion or another language. Fortunately, a few simple steps can make your site much more secure.