November 4, 2013

Top Risks and Recommendations For Windows Store Apps

This article originally appeared on Microsoft Developer Connection   OWASP’s Mobile Top 10 is a project launched by OWASP to identify the top 10 risks and […]
July 16, 2013

Federated Identities: OpenID vs SAML vs OAuth

Single sign-on (SSO) started it all. Organizations needed a way to unify authentication systems in the enterprise for easier management and better security. Single sign-on was […]
April 4, 2013

ASP.NET Security Code Review Techniques: SQL Injection Edition

This article appeared originally on Microsoft Canadian Developer Connection   What is SQL Injection SQL Injection is a programming weakness where the application dynamically constructs sql […]
March 4, 2013

ASP.NET Security Code Review Techniques: Cross-Site Scripting Edition

This article originally appeared at Microsoft Canadian Developer Connection. What is cross-site scripting? Cross-site scripting is an attack that allows an attacker to inject malicious code […]
November 8, 2012

Lessons Learned From Implementing Application Security Programs

Many organizations are realizing the importance of application security, given that 73% of organizations have been hacked at least once in the past two years through […]
September 18, 2012

A Non-Hi-Tech Solution To a Hi-Tech Problem

The Cost is Going Up The cost of data breaches continue to climb, Global Payments which back in the spring reported a data breach in which […]