Ibuildings - Ibuildings Zend Products > Professional Services > Applicatie Audits

PHP Security Audit

Home Ibuildings PHP Services Ibuildings Business Ibuildings Zend Products » Training » Zend Studio » Zend Platform » Zend Guard » Zend Core » Zend Framework » Professional Services » Zend for i5/OS Ibuildings Blogs About Ibuildings Ibuildings Events Our Partners Contact

Home

Ibuildings Zend Products

Professional Services

Applicatie Audits

PHP Security Audit

Security Audit

The Security Audit evaluates the security of PHP applications or PHP code. The service involves auditing the target application or code against a series of benchmarks and criteria, and providing a detailed written report of audit findings along with a series of recommendations for addressing issues identified.

What you don't know, can hurt you!

Growth and change in successful organizations can put strain on applications as they struggle to keep up with growing demand and usage. Security problems may appear and the application becomes vulnerable to outside security threads. Developers may be spending more time in fixing and maintaining the application rather than adding new functionality.

With these Zend services, Ibuildings helps the customer to identify barriers to full security of their PHP application, and provides them with options for removing those barriers and optimizing the security, When your application is assessed by PHP experts, the root cause of performance problems can be quickly identified, and then addressed.

The Service Process

The audit begins with a detailed evaluation of your application, taking into account everything from usage volume to the operating system. All audit items are evaluated relative to Zend benchmarks by the Ibuildings Professional Services consultant.
Once the application has been reviewed, the data is analyzed, issues identified, and recommendations developed.

The road to success

The result is a comprehensive report and recommendations which provide you with a detailed roadmap, which you can implement yourself, or work with Ibuildings to implement with you. We will also provide a proposal for implementation of the recommendations. Whether implemented by your team or by Ibuildings' Zend Professional Consultants, you will have a detailed roadmap which puts you on the road to success!

What we look for

Zend Professional Services has established a set of standard benchmarks for evaluating each application or code base. Listed below are sample components for the Security Audit Benchmarks:

Penetration testing
Cross site request forgeries
PHP Configuration analysis
JavaScript vulnerabilities
Output analysis
Denial of service analysis
Input filtering analysis
Header injection
SQL injection
Script security analysis
Dirty data analysis
Session security
Cross site scripting vulnerabilities
Shell execution security analysis

Because every customer’s need is different, and every application is unique, the actual components used during the audit will vary based on customer need.

Features and benefits

Features	Benefits
Objective third party review of application	Unbiased evaluation of your application significantly reduces the risk of missing or ignoring potentially critical flaws.
Certified PHP Experts	Ensures the Ibuildings consultants bring a significant measurable level of expertise to your project Results in higher quality deliverables in a shorter period of time, so you have your results faster
Detailed written report and recommendations	By knowing what the issues are, you can make informed decisions regarding next steps to address them and ensure that your applications run reliably and securely. Whether you decide to implement the recommendations yourself, or have Ibuildings experts do so, you can be comfortable that by following the recommendations you have taken the right steps to improve the performance, scalability or security of your application.

Fixed price

Limited to a code base of 50,000 Lines of Code or less, the service has a fixed price. For larger applications contact us for a custom quote.