Cybersecurity Category
Covering all aspects of security, threats, and best practices.
02/05/2016
What is the difference between bcrypt and SHA256?
by Frank Rietta
TL;DR; SHA1, SHA256, and SHA512 are all *fast hashes* and are bad for passwords. BCRYPT is a *slow hash* and is good for passwords. Always use slow hashes, never fast hashes.
05/04/2015
Uniqueness Validation Race Condition in Ruby on Rails applications
by Frank Rietta
It's easy for race conditions to slip into your code and out into production. 'validates :field_name, uniqueness: true' is not enough to prevent duplicates in your database; here's how to enforce data integrity with both validations and unique indexes.
02/19/2015
New Video! Understanding & Defending Against Data Breaches
by Frank Rietta
Security incidents that lead to customer data breaches, which have been happening at an increasing rate. Most of these incidents are preventable, some would have even been stopped by simply having two factor authentication for staff member access.
01/09/2015
Two new videos! How a Ruby on Rails developer can help prevent a Data Breach
by Frank Rietta
Videos of the data breaches and Ruby on Rails are now up on YouTube! Level up on your security knowledge because good software security needs to be a moral stance!
10/02/2014
Raspberry Pi crypto key management project!
by Frank Rietta
A dedicated offline crypto key management system OpenPGP and an SSL Certificate Authority set up for air-gapped operations using a Raspberry Pi B.