Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » Security   (RSS)
Wednesday, July 22, 2009 12:04 AM

Security Features vs Security Bugs

Several times when I've been talking with customers about implementing an SDL, or what they should be doing to secure their in-house developed applications, I get asked a similar branch of questions. · Why do we need to review the design if we review
Posted by RockyH | 0 Comments
Filed under: ,
Thursday, June 11, 2009 7:17 PM

Finally, answers on the Web – Bing

Bing and the world Bing’s with you, Search and you Google alone… I must admit I wasn’t a real huge fan of the search results that I got with Live. But I think someone was listening. We introduced Bing to the world and I have to tell ya, it’s all it’s
Posted by RockyH | 0 Comments
Filed under: , ,
Tuesday, February 03, 2009 11:58 AM

The Storm is Rising

Catchy title huh? But what do I mean by that. Hackers take advantage of this kind of chaos, are you ready? You know when your grandma told you to save your pennies for a rainy day, well the rain is here…a lot of it. In case you hadn’t noticed, a large
Posted by RockyH | 0 Comments
Filed under:
Wednesday, May 02, 2007 11:20 PM

The Vicious cycle

In the IT Security area there seems to be this lack of belief in the old adage, It Can Happen To Anyone . Normally, before a company will get off their collective butts and do anything about their software security, they have to experience an incident.
Posted by RockyH | 4 Comments
Filed under: ,
Tuesday, November 21, 2006 7:30 AM

MS Anti-Cross Site Scripting Library 1.5 Available

Many applications today have several common security problems. SQL Injection, poor authentication and authorization, and Cross Site Scripting (XSS) vulnerabilities. The faster and more conssitently we can address these problems the better the security
Posted by RockyH | 0 Comments
Filed under: , ,
Friday, November 03, 2006 9:34 AM

ACE Threat Modeling Links

I've been asked several times where to get the new ACE Threat Analysis and Modeling tool. You can find this and more information about ACE Services here: http://msdn2.microsoft.com/en-us/security/aa570413.aspx Have a look. We're working on getting V2.1
Posted by RockyH | 1 Comments
Monday, September 11, 2006 2:45 PM

Can we get something for nothing?

A lot of the time when I'm presenting or discussing implementing a Secure Development Lifecycle (SDL) with clients the same question pops up. 'How much is this going to slow us down?' Well to be honest, you can't insert anything into a Software Development
Posted by RockyH | 0 Comments
Filed under:
 
Page view tracker