Paragon Initiative Enterprises Blog

The latest information from the team that develops cryptographically secure PHP software.

The 2018 Guide to Building Secure PHP Software

Everything a developer needs to know to build secure software in the PHP programming language in the year 2018


How We Engineered CMS Airship to be Simply Secure

A deep dive into the security engineering decisions that went into CMS Airship. A lot of the decisions we made are subtle.


On the (in)security of popular open source Content Management Systems written in PHP

An analysis of the deficits in the security features offered by WordPress, Drupal, and Joomla.


Securing a PHP Application in 2016: The Pocket Guide

A quick guide to eliminating the common threats when developing PHP applications in 2016.


The PHP Security Platinum Standard: Raising the Bar with CMS Airship

Announcing the first release of CMS Airship, which establishes the new PHP security platinum standard of today and the gold standard of tomorrow.


Introducing CMS Airship: A Secure Content Management System for the Modern Web

The beta release for a secure-by-default CMS built by Paragon Initiative Enterprises


Building Secure Web Applications in PHP

Don't just fix security vulnerabilities, prevent the habits that cause them in the first place.


Everything You Need to Know About Preventing Cross-Site Scripting Vulnerabilities in PHP

Although Cross-Site Scripting is one of the most common vulnerabilities on the Internet, it remains an unsolved problem (unlike SQL Injection).


Need Technology Consultants?

Will tomorrow bring costly and embarrassing data breaches? Or will it bring growth, success, and peace of mind?

Our team of technology consultants have extensive knowledge and experience with application security and web/application development.

We specialize in cryptography and secure PHP development.

Let's Work Together Towards Success

Our Security Newsletters

Want the latest from Paragon Initiative Enterprises delivered straight to your inbox? We have two newsletters to choose from.

The first mails quarterly and often showcases our behind-the-scenes projects.

The other is unscheduled and gives you a direct feed into the findings of our open source security research initiatives.

Quarterly Newsletter   Security Announcements