SOURCE: Application Security, Inc.

May 02, 2005 08:00 ET

Renowned Database Security Expert and Application Security, Inc. Co-Founder Aaron Newman to Share Insights at Premier Oracle User Group Event

Author of the Best-Selling Book on Oracle Database Security to Provide Best Practices Strategies, Tips and Techniques at IOUG Live!

ORLANDO, FL -- (MARKET WIRE) -- May 2, 2005 -- Application Security, Inc. (AppSecInc) today announced that Co-founder and CTO Aaron C. Newman will once again highlight best practices for comprehensive and effective database security for participants at the International Oracle User Group IOUG Live! conference. The premier independent Oracle customer education event takes place this week at the Walt Disney World Dolphin Hotel in Orlando, Florida.

Concurrent with the show, AppSecInc is releasing the latest ASAP Update for its flagship application vulnerability assessment scanner, AppDetective -- making it the only scanner able to check for the vulnerabilities addressed in the April 12 Oracle Critical Patch Update. By far the market share leader in its category, AppDetective enables organizations to harden their databases against the very latest threats. Based on a longstanding relationship, AppSecInc alerted Oracle to a number of the vulnerabilities in Oracle's April 12 Update and Oracle quickly responded with patches.

Mr. Newman is widely regarded as one of the world's foremost database security experts and is co-author of the Oracle Security Handbook. In his presentations, he will address how enterprises can avoid pitfalls in database deployment, management and operational oversight that can create security issues. After all, database security breaches are anything but theoretical -- so far in 2005, the personal information of more than 1,000,000 consumers has been compromised.

Members of the media and market research communities interested in meeting with Mr. Newman at IOUG Live! are invited to visit booth #504 or to contact Rebecca Knowles (, 508-725-8930) or Christine Atkinson at CHEN PR (, 781-466-8282, ext. 39).

IOUG Live! offers Oracle customers timely, real-world solutions and unparalleled knowledge exchange with a network of fellow professionals. Mr. Newman's sessions include:

Monday, May 2, 2005

"Intrusion Detection and Security Auditing for Databases"
Time: 10:00 a.m. - 11:00 a.m.
Focus: Ensuring database confidentiality, integrity and availability
through properly implemented auditing and monitoring.
Tuesday, May 3, 2005
"Anatomy of a Database Attack"
Time: 1:00 p.m. - 3:00 p.m.
Focus: Looking at Oracle from the hacker's perspective -- covering
motivations and common techniques, and how Oracle 10g has improved
"Defending Databases from Search Engines"
Time: 4:45 p.m. - 5:45 p.m.
Focus: Analyzing the technical details of how hackers are attacking
databases using search engines, and the ethical and legal issues
surrounding search engines and sensitive data.
Cited by Enterprise Strategy Group for uniquely addressing the comprehensive application security lifecycle(1), AppSecInc delivers the industry's only complete vulnerability management solution for the application tier. Its product portfolio -- addressing database-specific vulnerability assessment; IDS and auditing; and database encryption -- was recently lauded by Forrester Research as the "most comprehensive database security solution" on the market(2).

About Application Security, Inc. (AppSecInc)

AppSecInc is the leading provider of application security solutions for the enterprise. AppSecInc's products -- the industry's only complete vulnerability management solution for the application tier -- proactively secure enterprise applications at more than 300 organizations around the world. By securing data at its source, we enable organizations to more confidently extend their business with customers, partners and suppliers while meeting regulatory compliance requirements. Our security experts, combined with our strong support team, deliver up-to-date application safeguards that minimize risk and eliminate its impact on business. Please contact us at 1-866-927-7732 to learn more, or visit us on the web at

AppSecInc and AppDetective are trademarks of Application Security, Inc. All other company and product names are trademarks of their respective companies.

(1) ESG Report “Application Security, Inc. (AppSecInc) Offers Security Lifecycle Management for Critical Applications and Databases” by Jon Oltsik, April 4, 2005.

(2) Forrester Report “Comprehensive Database Security Requires Native DBMS Features and Third-Party Tools” by Noel Yuhanna, March 29, 2005.

Contact Information