Security for Canadian Developers

MSDN Canada: Security Virtual Conference Recording

As promised, here is the recording of MSDN Canada Writing Secure Code Fundamentals Virtual Conference. Enjoy the recording and I hope to see you at our next online Security sessions on October 18th, 2006. This will be the first of eight, one hour monthly

Introduction to AJAX Security

As I start investigating the use of AJAX technology for new or existing Web Applications there are some major concern around Security that arises. The good news is—for the most part--securing AJAX enabled Web Applications is very similar to securing traditional

Post Security Virtual Conference Recap--Writing Secure Code Fundementals

Wow! It was great to see such a high attendance and have it be sustained through three sessions and four hours in total. The three sessions were: Hacking Revealed presented by Dan Sellers (me) Mitigation and Detection by Kevin Lam Threat Modeling by Deepak

An Application or Device is Only as Secure as it was Tested Against

It still amazing in this day and age how many Security Professionals, Developers and Architect still believe in the Silver Bullet and automatically accept an Application is Secure becomes someone says it is. The quick and easy way out does not work when

[Guest Blogger] Dana Epp on Security Myth: Only Large Teams Can Write Secure Code

Dana Epp (Chilliwack B.C.) [Guest Bloggers] Security Myth: Only Large Teams Can Write Secure Code If you ask me, one of the biggest fallacies of writing secure code is that you can only accomplish it when you work in large teams and have bigger budgets.

[Guest Blogger] Tatiana Zamachnaia on Security Paranoia Revisited: Do Not Trust Even Gurus

Tatiana Zamachnaia (Ottawa) [Guest Bloggers] Security Paranoia Revisited: Do Not Trust Even Gurus My latest consulting gig called for a reporting solution. I tried the GridView and other ASP.NET 2.0 controls but this solution needed a custom ASP.NET Server

Signing Modules in SQL Server 2005 with Certificates

The one topic that I get asked to talk about frequently is Encrypting Data with SQL Server 2005. Personally, I am very impressed with the build-in encryption support provided in SQL Server 2005, but one of my favorite and what appears to be a subtle Security

Half Day Virtual Security Conference--September 27th, 2006

To continue upon the success of last year MSDN Canada Security Webcasts we have raised the level up a notch or two this year. This year will consist of two Virtual Conferences and eight Security Webcasts titled "Security Chalk Talk" occurring monthly