Browse by Tags

Tagged Content List
  • Blog Post: MSE – Microsoft Security Essentials schlagen sich tapfer

    Hi… wenn man diesen Bericht so liest http://arstechnica.com/security/news/2009/10/av-comparatives-picks-six-malware-removal-winners.ars?utm_source=rss&utm_medium=rss&utm_campaign=rss wird einem doch etwas warm ums Herz ;-) Der Bericht klassifiziert die Security Essentials doch in sehr akzeptable...
  • Blog Post: Überprüfung auf Korrektheit: Wie eine Problemstellung aus der theoretischen Informatik die Welt verändern kann

    Hi… ich habe vor Jahren in einem Projekt mitgearbeitet bei dem es um eine Überprüfung der Funktion von Software ging. In meinem Falle ging es um die Genehmigung Kernkraftwerke steuern zu dürfen. Klingt erstmal dramatisch, ist aber technisch nicht so kompliziert wie zum Beispiel ein Flugzeug. Wenn die...
  • Blog Post: Two years of broken crypto

    Hi... you all are still aware of the bug that had been introduced into Debian random key generation two years before it has been discovered. The whole IT world was victim since not only the code was used in different systems all over the place, the week keys generated spread also. In an issue of the...
  • Blog Post: 360° Security Roadshow – Videos online

    Hi… you can find the content of the 360° Security Roadshow here http://www.microsoft.com/germany/msdn/events/archiv/securitydays2008/default.mspx (German only!!) It was an interesting experience. I did the keynote and really tried to deliver some insights and backgrounds. At least the direct feedback...
  • Blog Post: Startseite - Sonntag 2.0 @ mixxt

    Hi… yes, we will try… our first mini-micro-nano-Barcamp. The real story behind it is interesting enough: We are in the process of doing a security roadshow. Since we had problems getting the locations filled (Developers and security is always the same…) we asked ourselves why not doing something completely...
  • Blog Post: Secure Development Lifecycle and Web 2.0

    Hi… I found this nice blog entry http://blogs.msdn.com/sdl/archive/2008/02/28/sdl-and-web-2-0.aspx Every single word is true. My impression is that most people in this vibrant web 2.0 space still think they live in happy land where no bad people exist. Even worse: This might be true… in a awkward sense...
  • Blog Post: Is Developing too easy??

    Hi... we have an interesting discussion internally on this article: http://www.informationweek.com/windows/showArticle.jhtml?articleID=205918671&cid=RSSfeed_TechWeb In short: The guy who cost the french bank you all know about 7 billion US$ just used VBScript and Office to do this. Hu, how bad is...
  • Blog Post: Good Security Content....

    Hi... to be very open, honest, and respectful: it is too much of a game but in the end it contains good security content... so bare with the game ;-) I really enjoyed the videos. One started with Yet another SQL injection... uha... how boring. But it turned out to be very amusing and interesting. In...
  • Blog Post: Forget about Security - We have a tool...

    HI... ok this is actually misleading: We (e.g. Microsoft or any other group I belong to) do not have a tool. But there are some people out there who claim to have one... I found this blog article by Michael Howard (see http://blogs.msdn.com/michael_howard/archive/2008/01/10/open-source-projects-certified...
  • Blog Post: Security Blog - The Techie Way

    Hi... this is really the way I like it: We have always been asked if we could provide more insight in the what and the why behind security faults. The official answer ;-) was this is not necessary to cure the fault nor to understand its importance. This is just to satisfy some kind of curiosity... well...
  • Blog Post: What's happening in the Security Space??

    Hi... well, get informed: http://download.microsoft.com/download/a/a/1/aa1ac20e-514e-4ec1-a12e-022c35aa54cf/KeyFindings_MS_Security_Report_Jan-Jun07.xps This report is only a summarization of the broader study underneath. But it shows the hardest problem spaces. Well, seeing the result still shows we...
  • Blog Post: Our own Security Book...wooha

    Hi... yes, finally we made it: We collected a lot of content and published our own security book. Thanks to all the authors and thanks to Sebastian Weber for doing all the work behind the scenes... If you speak German check it out: CU 0xff
  • Blog Post: Can you be cool but not secure?

    HI... to make it short: Yes, you absolutely can... for a few days at least. Maybe you saw this "APPLE-SA-2007-09-27 iPhone v1.1.1 Update" announcement by Apple. It fixes (or at least tries to... who knows in the end) to fix 6 bugs in Safari, two in the mail client, and one in the Bluetooth Subsystem...
  • Blog Post: Month of the Search Engine Bugs

    Hi... I found an interesting article on a series of blog entries done by some guys from the Ukraine. I think it is common sense now that search engines itself are nice hacking tools. On the other hand most entries (as far as I have seen it) are about additional services provided around the pure search...
  • Blog Post: Worst Jobs in Science and Technology...

    Hi... the German Spiegel Magazin quoted in a ticker news (see http://www.spiegel.de/netzwelt/web/0,1518,491259,00.html ) the US magazine Popular Science (see http://www.popsci.com/popsci/science/0203101256a23110vgnvcm1000004eecbccdrcrd/5.html ) about an article on the worst jobs in science (and I suppose...
  • Blog Post: "War of the worlds" in Czech landscape...

    Hi... have you ever heard about the effect the first broadcast of "War of the worlds" had?? Well, some Czech guys did it during breakfast TV by hacking into a live webcam On the other hand it shows how far we rely on news... CU 0xff
  • Blog Post: Some thoughts on Security and Privacy in the next web's world

    Hi... I made some thoughts on Web 2.0 Security and Privacy and scetched some things (see www.cu-0xff.de/web20sec/ ). I used the Windows Journal to Silverlight exporter. First I tried to develop a model for the information gathering in the Next Web usage scenario (scetch on the top). I think one should...
  • Blog Post: Running into Security... in a LasVegas casino...

    HI... every little thing has its own story. So does the video which Lori just posted on www.on10.net ... The video is on her blog here http://www.on10.net/Blogs/lorigros/mix07-goodbye-mix-hello-xtopia/ When we started recording we thought it might be nice to have this real Las Vegas' flair...
  • Blog Post: Security in the next web's world

    Hi... Security is a topic which will not leave us for the time of our existance, I think. Recently I was playing with some technologies like Astoria , Silverlight and ASP.NET Futures . My idea was to build something special for the XTOPIA conference. We could build a data service based on Astoria...
Page 1 of 1 (19 items)