Quantcast
Channel: Justice League Blog » Software Security
Browsing latest articles
Browse All 12 View Live
Image may be NSFW.
Clik here to view.

Kickstarter Password Breach … #FTW?

:0
:0
February 15, 2014, 9:16 pm

Last Wednesday I spoke about password storage security in a Cigital at the WhiteBoard session. Fate has allowed a publicized password breach within a few days prior to these talks nearly without fail...

View Article
Search
Image may be NSFW.
Clik here to view.

Understanding the Apple ‘goto fail;’ Vulnerability

:0
:0
February 25, 2014, 10:07 am

You may have heard about the recently publicly disclosed vulnerability (http://support.apple.com/kb/HT6147) in Apple iOS. Let’s take a look at the goto fail details as well as at who is affected....

View Article

Dr. McGraw talks Software Security on Security Weekly

:0
:0
March 21, 2014, 3:54 pm

Software Security on Security Weekly (with paul dot com) Episode 366 of Security Weekly features a conversation with Gary McGraw. Watch the whole thing here Here is a quick viewer’s guide to skipping...

View Article

OpenSSL: Fix or Rewrite?

:0
:0
April 8, 2014, 10:31 am

Today’s OpenSSL bug adds another tally on to the rapidly growing list of major security issues with the OpenSSL library. A friend and former colleague, Mike Nygard asked a very important question....

View Article

Cordova InAppBrowser Remote Privilege Escalation

:0
:0
May 20, 2014, 6:47 am

Earlier this year, I identified an interesting vulnerability (CVE-2014-0073) in one of Apache Cordova’s core plug-ins (InAppBrowser). Cordova, also sometimes referred to as PhoneGap, is a popular...

View Article
Image may be NSFW.
Clik here to view.

Why Aren’t We Learning From (Defect) History?

:0
:0
July 23, 2014, 1:09 pm

I was recently part of Silver Bullet 100 where I was asked “How much progress have we made in the last ten years with Architecture Risk Analysis (that is, finding and fixing flaws in software design)?”...

View Article
Image may be NSFW.
Clik here to view.

On Optimism and Software Security

:0
:0
July 25, 2014, 9:13 am

If you have watched the 100th Episode of The Silver Bullet podcast, you’ll see that Gary McGraw and I were the only two out of 6 people who were optimistic about software security and the future. I...

View Article
Image may be NSFW.
Clik here to view.

Associating Security Responsibilities Within Development Frameworks

:0
:0
July 28, 2014, 7:57 pm

Practicing software security builds on knowledge of tools, techniques, and technologies. I consistently harp on the importance of understanding development frameworks. These frameworks provide a...

View Article
Search
Image may be NSFW.
Clik here to view.

Software Security and the User Interface

:0
:0
October 8, 2014, 3:04 pm

We had an internal discussion the other day about the pros and cons of connecting professionally with random folks. During that discussion a separate thread was started about how to hide who you are...

View Article

Alphabet Soup: SAST, DAST, IAST, and RASP Explained

:0
:0
November 7, 2014, 7:08 am

Turns out that the most important part of a software security initiative is FIXing the bugs that you FIND no matter how you find the bugs. So just what do all of the alphabet soup tools do? How do they...

View Article
Browsing latest articles
Browse All 12 View Live
Search

Latest Images

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am
Photographer Gifts for Clients / Print Packaging / 4x6 Photo Box by...

Photographer Gifts for Clients / Print Packaging / 4x6 Photo Box by...

April 17, 2024, 6:48 pm
Deepfake Video of Aamir Khan circulates Online

Deepfake Video of Aamir Khan circulates Online

April 17, 2024, 3:07 am
Very Hungry Caterpillar™ Shirt: World of Eric Carle™+ Little Goodall by...

Very Hungry Caterpillar™ Shirt: World of Eric Carle™+ Little Goodall by...

April 14, 2024, 8:14 am
Have you seen Michael Wines? Burien man has been missing since Saturday,...

Have you seen Michael Wines? Burien man has been missing since Saturday,...

April 12, 2024, 3:59 pm
Stay Salty POTS Awareness Stretchy Stacking Bracelets | Set of Three|...

Stay Salty POTS Awareness Stretchy Stacking Bracelets | Set of Three|...

April 11, 2024, 5:27 pm
19 Reader-Favourite March Purchases — From Steals To Splurges

19 Reader-Favourite March Purchases — From Steals To Splurges

April 11, 2024, 5:07 am
Fake lip ring, silver lip ring, simple lip ring, unisex lip ring by AIRlab

Fake lip ring, silver lip ring, simple lip ring, unisex lip ring by AIRlab

April 9, 2024, 4:00 pm
People's Blog • First Pictures of the Eclipse ! ! !

People's Blog • First Pictures of the Eclipse ! ! !

April 8, 2024, 1:08 pm
First Pictures of the Eclipse ! ! !

First Pictures of the Eclipse ! ! !

April 8, 2024, 1:08 pm