Ivan

« January 2005 | Main | June 2005 »

May 26, 2005

Security Chat on Microsoft.com

Tomorrow come join a security chat at microsoft.com where MS experts are going to talk about ACLs, authorization techniques, role based access control and ASP.NET. Should be interesting :). http://www.microsoft.com/communities/chats/default.mspx#05_0526_DN_ACT

Posted by ivan at 12:57 AM | Comments (0) | TrackBack

May 12, 2005

New entry :)

It's been awhile since I last posted anything here, even though life is full of interesting and exciting things, including ones in the security space. My main focus remains on building security tools. Unfortunately many of them I can not talk about, which is part of the reason why this blog has been stagnant. One of the tools I can talk about though is the Threat Modeling Tool, which my team owns and we are currently working on a new version with some bug fixes, nicer UI and some new features. Most likely it will be available for download some time in summer. Other things we focus on include building tools that incorporate [relatively] new methods of finding security vulnerabilities, such as fuzzing or fuzz-testing (I should probably post an entry on this as it is a very interesting topic). SDL (Secure Development Lifecycle) is another thing I am involved into, partly helping drive it, partly building tools that enforce it.
I have recently been to Russia, speaking about security tools for developers at MS Research's Academic Days event and while on this trip I had also visited several universities. I have to say that I am surprised by how much attention software security gets nowdays, some universities (such as MEPHI) have whole faculties dedicated to this problem. I think this is awesome.
Cheers everybody and I will try to write more frequently.

Posted by ivan at 02:39 AM | Comments (0) | TrackBack
Find the latest software for business and accounting applications to system tools and server applications as DotNetThis