Internet Gaming Software insecurity has become a security concern facing many online Internet Gaming Operators. As hackers turn their attention to applications that make up the Internet Gaming System (IGS) and are directly facing the web, operators and regulators are realizing that the best way to protect the IGS is to ensure that the software is secure before the IGS launch. NTL has performed hundreds of Software Security Assessment and Code Review of vendor IGS products and conducted several security assessment in partnership with well know Accredited Testing Facility (AFT)’s globally.

Network Test Labs Secure Source Code Review provides Internet Gaming System (IGS) Operators, regulators and auditors with secure and safe software to ensure independent, trustworthy operations within the secure gaming environment.

With Network Test Labs Secure Source Code Review , Operators and Vendors can:

• Identify the root cause of software security vulnerabilities in both source code and running applications Detect more than 470 types of vulnerabilities across 18 development languages and more than 600,000 APIs

• Fix your most important security issues faster with collaborative remediation

• Contain existing vulnerabilities in deployed software so they can do no harm

• Govern the process for ensuring the security of the software you depend on

• Stay ahead of threats by leveraging the industry’s only team dedicated to providing continuing research on application security issues and threats

• Comply with government and industry compliance mandates and internal policies such as Payment Card Industry Data Security Standards (PCI DSS), the Federal Information Security Management Act (FISMA), Sarbanes-Oxley Act (SOX), the Health Insurance Portability and Accountability Act (HIPAA), and North American Electric Reliability Corporation (NERC) standards

Network Test Labs Support the various programming languages but not limited to the following:

• ASP.NET, VB.NET, C# (.NET)
• Classic ASP (with VBScript)
• COBOL
• Java
• JavaScript/AJAX
• JSP
• PHP
• PL/SQL
• Visual Basic
• VBScript
• XML
• HTTP

Network Test Labs provides a detailed assessment of the following components within the Source Code:

• Secure Software Design - Secure Software Development Lifecycle

• Data Protection in Storage and Transit – Using Cryptography, Random Number Generator, Key Management

• Authentication and Authorization – Secure Authentication, Protocols, Access Control, Models

• Secure User and Session Management - Secure Session, Password Storage, Handing Password Resets

• Client Side Security – Client Side Security Controls, Code Obfuscation, Anti Tampering Measures

• Data Validation Strategies – Trust Boundaries, Data Validation Design, Common Data Validation Attacks

• Error Handling and Exception Management – Security Impact, Structured Exception Handling, Failing Securely, Designing Error Messages

• Secure Auditing and Logging – Error logging, Exception logging, Security Alerts