Browse by Tags
All Tags »
Books (
RSS)
I have posted the slide decks and demo code I used for my talks this past weekend at the New England Code Camp 7 - Deer in Headlights conference. You can find the files here . My talks were: How to Perform a Secure Code Review Protecting Data with SQL...
Congratulations to fellow MS Developer Security MVP Dominick Baier on finishing his book Developing More-Secure Microsoft ASP.NET 2.0 Applications . This is available through Amazon and other locations this week. I have been looking forward to this one...
I am working in Western Massachusetts these days and I had a chance to check out the local Western Mass .NET Users Group meeting last night. Julie Lerman gave a great talk on the new asynchronous features of ASP.NET 2.0. Here is her write up . It's...
I bought Michael Howard 's and Steve Lipner's book The Security Development Lifecycle here at TechEd 2006 today. Michael has a description and purpose of the book as well as a table of contents on his blog . One thing I noticed immediately is the list...
I am at TechEd 2006 in Boston this week. I registered yesterday (Sunday), coming in on the subway. This is one conference that is not much of a change for me as I commute into Boston everyday anyway -- usually on the commuter rail. It's interesting to...
I usually keep a few books I am reading at a time. Plus I am writing the chapter (along with several others like Sahil Malik 's chapter on Transactions ) on SQL Server 2005 Security for the upcoming MS Press SQL Server 2005 book by Andrew Brust and Stephen...
One thing I enjoy about long flights (like mine to San Francisco and back this week) is catching up on some reading. One book I was eager to dig into for awhile is Robert C. Seacord's Secure Coding in C and C++ . I have been programming mostly in C++...
I often get questions at conferences about the new ASP.NET 2.0 security features including membership and role management. Also, in particular, I get questions about integrating ASP.NET 2.0 membership and role management with Active Directory. There are...
Last night I spoke to the OWASP (Open Web Application Security Project) Boston Chapter group on Threat Modeling for Web Applications . I presented some of the latest updates in Threat Modeling (in particular, those updates mentioned by Michael Howard...
I will be travelling again this week with back to back conferences at VSLive! Orlando and HDC 2005 in Iowa. I am looking forward to reading this long-awaited new book on the airplane trips: Framework Design Guidelines : Conventions, Idioms, and Patterns...
More Posts
Next page »