November 26th, 2011 § 0 comments § permalink
Making sure your data is encrypted when it’s being stored somewhere outside of your direct control is a good idea. When that system has your customers data on it, it’s a requirement. Unfortunately when your data is in a cloud environment like Amazon EC2 your options can be limited, confusing, or both. Questions like where [...]
November 5th, 2010 § 0 comments § permalink
ACT III: Reality Sinks In (Read Act I & Act II) THE SOUND of typing can be heard and then suddenly a loud groan of disappointment. DEV LEAD Argggggggggggggggg!!! FADE IN: INT. CORPORATE OFFICE THE DEV LEAD is looking at his bug queue in HP Quality Center, the bug count is 6,894 defects, all assigned to him. [...]
October 11th, 2010 § 5 comments § permalink
ACT II: The Deception (Read Act I Here) FADE IN: WIDE SHOT — The server room, filled with blinking lights and racks of servers. We PAN and FOCUS in on the back of the SALES ENGINEER who is typing away at a terminal. A DEV LEAD sits nearby, looking bored. SALES ENGINEER’S POV — The [...]
September 23rd, 2010 § 2 comments § permalink
The other day I was asked about how one might integrate Veracode’s application security analysis solution into their nightly software build process. I get this question all the time because it is a popular idea among automated source code analysis tools and the common sense tells you that it’s one of the best ways to [...]
August 16th, 2010 § 0 comments § permalink
“I don’t believe society understands what happens when everything is available, knowable and recorded by everyone all the time” – Eric Schmidt, CEO, Google Actually I think society does understand, or at least we used to. This is exactly why there is a separation between juvenile and adult criminal records. Regardless it’s all the more [...]
CrashPlan Central Review - The Perfect Online Backup Solution? 39 comment(s) | 1347 view(s) 
Carbonite - Not Ready for the Real World 25 comment(s) | 479 view(s) Closure on Carbonite - How to get a Refund 9 comment(s) | 318 view(s) The Comedy and Tragedy of Automated Security Source Code Analysis - Act II 5 comment(s) | 13 view(s) The Impending Failure of the TechCrunch CrunchPad 4 comment(s) | 14 view(s) Ask A Ninja 3 comment(s) | 7 view(s) The need for a Cloud Computing Security referee 2 comment(s) | 6 view(s) 
The Comedy & Tragedy of Automated Security Source Code Analysis 2 comment(s) | 1464 view(s) Waiting for iPhone Activation 2 comment(s) | 33 view(s) 
Is the Solution to Online Privacy Simply a Question of Ownership? 2 comment(s) | 14 view(s)