Security

Security

How to address threats, attacks, vulnerabilities, and countermeasures.

Secure Your Network, Host, and Application

  Having a frame of reference for how to think about security helps you cut through information overload.  While working on our patterns & practices...

Threats, Attacks, Vulnerabilities, and Countermeasures

What’s the difference between software threats, attacks, and vulnerabilities?  While working on Improving Web Application security, we found a lot of confusion, so we...

Security Principles

If you know the underlying principles for security, you can be more effective in your security design.  While working on Improving Web Application Security:...

Quality Attribute List

When thinking about quality, I tend to draw from the following quality attributes: Availability Buildability Conceptual Integrity Evolvability Extensibility...

Security Approaches That Don’t Work

Photo by CarbonNYC If it’s not broken, then don’t fix it ... The problem is, you may have an approach that isn’t working, or it’s not...