Preview Mode Links will not work in preview mode

DevelopSec: Developing Security Awareness

Dec 15, 2016

Yahoo has announced yet another breach from back in 2013 affecting a very large number of user accounts. https://investor.yahoo.net/ReleaseDetail.cfm?&ReleaseID=1004285   This creates an opportunity to discuss password storage and the storage of security answers.  Find out what we can takeaway from this incident.

For...


Dec 14, 2016

It is the holiday season.  It is appropriate to talk about cookies.  Not the kind that you bake, but the ones in your applications.  James talks about the security mechanisms for cookies and clarifies what they are for. 

For more info go to https://www.developsec.com or follow us on twitter (@developsec).

Presented by...


Nov 16, 2016

Have you heard someone mention "untrusted" data?  Applications take data from multiple data sources and we are often confused on what should be trusted or not.  In this episode, James Jardine talks about untrusted data and some thoughts for moving past it.  

For more info go to https://www.developsec.com or follow us on...


Nov 4, 2016

Are you an organization looking to do source code review?  Are you trying to hire a pen tester with source code review as a duty?  

James talks about Secure Code Review and some common implementations.  

For more info go to https://www.developsec.com or follow us on twitter (@developsec).

Presented by Jardine Software...


Oct 26, 2016

Do you have a clear path for users to contact you about potential security issues in your application or device?  Is there a potential for the communication to be lost in the mix?  James talks about how it is important for users to have a clear path to communication when it comes to reporting security issues. 

For more...