Application Security Tips Part 3–Protect Your Passwords

My ongoing series on application security has taken an interesting turn. For part 3 – Protect Your Passwords, I decided to submit my post as a guest writer on Simple Programmer, a great site run by John Sonmez. Turns out they liked my idea and it is now officially up on the site. I wanted …

Continue reading Application Security Tips Part 3–Protect Your Passwords

Two P’s of Programming–Persistence and Patience

It was time to put our new vendor product into a new environment, our integration environment. This was a big deal because we previously installed it manually in our development environment and this is the first time that we would be using an automated build/deploy process to install it into our new region. We would …

Continue reading Two P’s of Programming–Persistence and Patience

Application security tips part 2 – SQL Injection

In part one of this series, I discussed the process of threat modeling an application. Once that step is done, you will have some concrete threats for which you need to prepare. Let's take a look at some of the threats that you would likely identify as part of the threat modeling exercise and how …

Continue reading Application security tips part 2 – SQL Injection

Application Security Tips Part One–Threat Modeling

I feel that it is important to lay the foundation of a topic before digging into the details. With that in mind, I’ve chosen to introduce threat modeling at the first part of this series. Threat modeling is still a skill I am mastering, so I’m sure new and inexperienced developers likely don’t really know …

Continue reading Application Security Tips Part One–Threat Modeling