I'm very much interested in fixing web security issues and I've been working in Security almost 2 years till now.
I would like to upgrade my knowledge in security field. I googled about certification and found that CEH or OWASP will be helpful. Can someone point me on the certification that is worth doing? Any other sources will be quite helpful.
There were no certifications available on 'Application Security' before but thanks to SANS, now you have GIAC in C, java and dot net.
Hone your java and security skills and then go for this certification. It is becoming popular among security professionals. More details can be found at:
(See Software Security)