Web Application Topics Category
05/10/2016
Bad Password Practices are Responsible For Most Data Breaches. You Can do Better.
by Frank Rietta
Verizon DBIR says 61% of data breaches are the result of bad password practices. Your app can avoid some of the pitfalls with a few precautions, especially using slow hashes and 2FA.
02/05/2016
What is the difference between bcrypt and SHA256?
by Frank Rietta
TL;DR; SHA1, SHA256, and SHA512 are all *fast hashes* and are bad for passwords. BCRYPT is a *slow hash* and is good for passwords. Always use slow hashes, never fast hashes.
10/11/2015
What is an Abuser Story (Software)
by Frank Rietta
In software development and product management, an abuser story is a user story from the point of view of a malicious adversary. Abuser stories are used with agile software development methodologies as the basis for defining the activities that should be actively blocked or mitigated by the software and proven by automated regression testing.
03/30/2015
Adding a Rake Task for SQL Views to a Rails Project
by Frank Rietta
I add and update SQL views to my databases with 'rake db:views'; it's wonderful!