J.D. Meier's Blog
Software Engineering, Project Management, and Effectiveness
December 2006 - Posts
ASP.NET 2.0 Security Scenarios and Solutions
Scenarios and Solutions are basically whiteboard solutions that quickly depict key engineering decisions. You can think of them as baselines for your own design. We have a set of solutions that show the most common end-to-end ASP.NET 2.0 authentication
Read More...
Input Validation Principles and Practices
If you use a principle-based approach, you can get rid of classes of security issues. SQL injection, cross-site scripting and other flavors of input injection attacks are possible because of some bad practices. Here's a few of the bad practices: Bad Practices
Read More...
Catalysts and Drains
This is a follow up to my post, Manage Energy, Not Time . A few folks have asked me how I figure out energy drains and catalysts. For me, clarity came when I broke it down into: Tasks People On the task side ... This hit home for me when one of the instructors
Read More...
What's a Scenario
In general, "scenario" usually means a possible sequence of events. In the software industry, "scenario" usually means one of the following: 1. Same as a use case 2. Path through a use case 3. Instance of a use case #3 is generally preferred because it
Read More...
Scenario and Feature Matrixes
One of the most effective approaches I've found for chunking up a project for incremental value is using a Scenario and Feature Matrix . A Scenario and Feature Mat rix organizes scenarios and features into a simple view. The scenarios are your rows. The
Read More...
What's the Cost of Not Doing Security Engineering
Alik is out in the field helping customers bake security into their product cycles. Of course, customers ask how much does it cost to implement Security Engineering practices ? The answer is, of course, ... it depends. The flip side is, what's the cost
Read More...
Manage Energy, Not Time
Manage energy, not time, to get more things done ... This concept really resonates with me. I also like it because it can be counter intuitive or non-obvious. One way to try and get more things done is to, jam more in your schedule. Yuck! Unfortunately,
Read More...
User Experience, Tech Feasibility and Business Value
I found a way to explore more and churn less on incubation (i.e. R&D) projects. It helps to think of your project experiments and key risks in terms of these three categories and in this order: 1. user experience 2. technical feasibility 3. business
Read More...
Timing Managed Code in .NET 2.0
In .NET 1.1, we timed managed code by wrapping QueryPerformanceCounter and QueryPerformanceFrequency . The following How To shows how: How To: Time Managed Code Using QueryPerformanceCounter and QueryPerformanceFrequency In .NET 2.0, you can use the Stopwatch
Read More...
Scenario Evaluations for Product Design and Feedback
When I need to quickly analyze a product and give actionable feeback, I use scenario evaluations. Scenario evaluations are basically an organized set of scenarios and criteria I use to test and evaluate against. It's a pretty generic approach so you can
Read More...
Be the Software
When you're working on an R&D project, how do you shorten the cycles around testing your user experience models? ... Be the Software That's the advise John Socha-Leialoha , father of Norton Commander , gave me and it worked like a champ. We faced
Read More...
Search
This Blog
Home
Email
Tags
Agile
AppArch
Architecture
Blogging
Business
Cloud
Competitive Studies
Design
Effectiveness
Frames
General
Guidance Engineering
Guidance Explorer
Innovation
Intellectual Horsepower
Leadership
Lessons Learned
My Projects
Patterns
patterns and practices
Performance
Process
Productivity
Project Management
Project Practices
Releases
Results
Security
Social Software
Software Engineering
Speakers
The Zen of Results
Videos
Visual Studio
WCF
Work Tips
Archives
November 2009 (1)
October 2009 (1)
September 2009 (4)
August 2009 (8)
July 2009 (9)
June 2009 (11)
May 2009 (3)
April 2009 (7)
March 2009 (10)
February 2009 (11)
January 2009 (18)
December 2008 (14)
November 2008 (19)
October 2008 (11)
September 2008 (25)
August 2008 (6)
July 2008 (2)
June 2008 (4)
May 2008 (5)
April 2008 (7)
March 2008 (11)
February 2008 (10)
January 2008 (24)
December 2007 (20)
November 2007 (7)
October 2007 (18)
September 2007 (5)
August 2007 (10)
July 2007 (5)
June 2007 (7)
May 2007 (14)
April 2007 (7)
March 2007 (48)
February 2007 (20)
January 2007 (16)
December 2006 (11)
November 2006 (5)
October 2006 (12)
July 2006 (1)
June 2006 (1)
May 2006 (2)
April 2006 (7)
March 2006 (7)
February 2006 (1)
December 2005 (5)
October 2005 (4)
September 2005 (2)
Best Of
7 Habits of Highly Effective PMs
Clearing Your Inbox
Get Lean, Eliminate Waste
Timebox Your Day
Results Approach
Scannable Outcomes
Patterns and Practices for New Hires
Effectiveness Post Roundup
2007 Post Roundup
My Projects on MSDN
Writing Books on Time and On Budget
Agile Architecture Method
Agile Guidance Engineering
My Articles
A Language for Architecture
My Blogs / Wikis
Sources of Insight (Personal Development)
Architecture Guidance Share
Shaping Software
My Books
Improving .NET Application Performance
Improving Web Application Security
Building Secure ASP.NET Apps
Perf Testing Guidance for Web Apps
Team Development with VSTS
Security Engineering Explained
Microsoft Application Architecture Guide 2.0
Improving Web Services Security
Personal Development
Lessons Learned in 2008
Personal Development Books
The Zen of Results (Free E-Book)
30 Day Improvement Sprints
Syndication
RSS 2.0
Atom 1.0
