In this article Martin explains how to create a secure PHP login script that will allow safe authentication. Features remember-me function using cookies, validates logins on each request to prevent session stealing.

This article provides five steps to help identify or avoid such security holes in applications written using PHP.

Learn how to make your authentication and authorization schemes secure.

This list represents an attempt to collect academic papers on the subject of Web application security sorted by the year of publication.

Paper covering the rationale of discovery as much as the process of exploitation.

Ian Gilfillan's column explores common security pitfalls to avoid.

Information on how to check & implement web site security.

Secure your code with this application security resource.

A paper that identifies data validation issues in web applications and presents a modular approach to secure validation.

Ever growing list of links to research papers about web application security. Covers PHP as well as other languages.

The methodology used in the preparation of this article is to review all Bugtraq postings containing the word "PHP" and categorize each unique flaw. The author analyzed the most popular flaws / attacks, and researched prevention techniques, resulting in t

Articles about security from the experts at SPI Dynamics.