The Developer’s Guide to Cryptography: AES in Node.js

The Advanced Encryption Standard, or AES, is the standard chosen by the U.S. government to protect messages with symmetric encryption. Understanding what AES does and how it works is important. So is understanding how to use is practically in a real program. We'll first take a look at the Node.js implementation of AES. For now, …

Continue reading The Developer’s Guide to Cryptography: AES in Node.js


Secure Your API in Node.js

The OWASP Top 10 2017 RC has two new entries that should be of great interest to any REST API developer. A4 – Broken Access Control A10 – Underprotected APIs Broken access control is a major problem. OWASP rates it as easily detectable, easily exploitable, and widespread across the Internet. Underprotected APIs refers to the …

Continue reading Secure Your API in Node.js