12 min read

The Anatomy of a Security Breach

Without going into too much detail, there is a guy who the security industry collectively hates.  When you hear a statement like that, the happy parts of our brains think this guy must be an underdog.  He must be awesome at what he does, and the big corporations hate him for it.  Or maybe he’s…

4 min read

Kerberos: Very Claims-y

I’ve always found Kerberos to be an interesting protocol.  It works by way of a trusted third party which issues secured tickets based on an authentication or previous session.   These tickets are used as proof of identity by asserting that the subject is who they claim to be. Claims authentication works on a similar principle,…

Less than a minute read

WinFS

WinFS has been puttering around my idle thoughts lately.  Yep, weird. Why is it still available on MSDN and TechNet subscriptions? Food for thought.

8 min read

Bad User Interfaces are Insecure

The Best of Intentions So you’ve built this application.  It’s a brilliant application.  It’s design is spectacular, the architecture is flawless, the coding is clean and coherent, and you even followed the SDL best practices and created a secure application. There is one minor problem though.  The interface is terrible.  It’s not intuitive, and settings…

2 min read

Interesting Email Attack Method… Cannot Send Shipment

I’ve gotten two emails like this in the last week or so.  One was from DHL Shipping, and this one was from UPS.  Attached to the email was a zip, with what I presume to be a Trojan of some sort. The content of the email was: Dear customer! We were not able to deliver…

2 min read

A Thought on Windows Mobile 7

The other day while I was sitting in the airport in Washington, D.C., I had a random thought.  When the ZuneHD first hit the shelves people were talking about how Mobile 7 might borrow the look and feel.  It’s sleek, easy to use/easy to understand, and is very simple.  So I started thinking about what…

Less than a minute read

Pictures from Techdays and FailCamp in Toronto

After getting my camera back from Mitch Garvis after Techdays and FailCamp in Toronto, I decided to upload photos from the events, and to my surprise there were some pretty good shots.  Here is what I came back with:

3 min read

The Boston Tea Party has gone Batty

This morning I saw an interesting post on Twitter.  Which in-and-of-itself is kinda amazing, but that’s not the point.  The post was on something called the Windows 7 Sins site.  It is a campaign created by the Free Software Foundation to highlight everything that is wrong philosophically with Windows 7.  Now, I’m all for philosophical…