Security
-
Software Development
Essential Attack Surface Management
To attack your system, to steal something or do something else nasty, the bad guys need to find a way…
Read More » -
Enterprise Java
OAuth with Spring Security
From Wikipedia: OAuth (Open Authentication) is an open standard for authentication. It allows users to share their private resources (e.g.…
Read More » -
Software Development
Simple Security Rules
Wow! Citi really messed up their online security. They included account information as part of the URL. You could alter…
Read More » -
Enterprise Java
Spring 3, Spring Web Services 2 & LDAP Security
This year started on a good note, another one of those “the deadline won’t change” / “skip all the red…
Read More » -
Software Development
Public key infrastructure
Some time ago I was asked to create presentation for my colleagues which describes Public Key Infrastructure, its components, functions,…
Read More » -
Software Development
Hints for writing secure code
Security and data protection are becoming now more and more popular topics. We are coming into the world where too…
Read More » -
Enterprise Java
Single Sign On for the cloud: SAML & OpenId
When accessing different applications owned by different organizations, having to authenticate everytime you go from one application to another is…
Read More » -
Software Development
2011: The State of Software Security and Quality
It’s the end of the year. Time to look back on what you’ve done, what you’ve learned, your successes and…
Read More » -
Core Java
Ignoring Self-Signed Certificates in Java
A problem that I’ve hit a few times in my career is that we sometimes want to allow self-signed certificates…
Read More »
