Videos in category Security

This screencast shows you how to create an application with form based authentication to access a database. It was provided to the NetBeans community by Shakthi Anuradha Gunasekara (Anuradha G) from Sri Lanka as part of the NetBeans Community Docs Wiki and specifically a call to action on James' Blog.

A brief interview with Dr. Wang. Speaker: Dr. Chenxi Wang Speaker: Sundar Raghavan Google Tech Talks August, 31 2008

No one can argue that consumerization is happening within today's enterprises. This is the first time in the computing history that consumer technologies are driving innovation and technology adoption, rather than taking a back seat to enterprise and military technologies. Consumer technologies bring a rich, interactive user experience, which is a powerful draw for workplace adoption. Businesse...

After the disaster of the original Xbox, Microsoft put a lot of effort in designing what is probably the most sophisticated consumer hardware security system to date. We present its design, its implementation, its weaknesses, how it was hacked, and how to do it better next time. Speaker: Michael Steil Michael Steil has been involved with various embedded systems hacking projects, like the Xbox,...

One of the most commonly neglected security vulnerabilities associated with typical online service providers lies in the password reset process. By being based on a small number of questions whose answers often can be derived using data-mining techniques, or even guessed, many sites are open to attack. To exacerbate the problem, many sites pose the very same questions to users wishing to reset ...

In a perfect world, Software would be secure and we would not have to care about vulnerabilites that can get exploited while surfing the Internet.However, given that Google found more than 3 million malicious web addresses that try a drive-by download infection on the visitor's web browser, it's better to have a close look at the risk that our users are exposed to when surfing the web. This tal...

Summary In this presentation, John Steven talks about modeling security threats as a way to discover, understand and counteract threats while designing the system architecture. John presents threat modeling through examples focusing on authentication, authorization and session management. Bio John Steven is a Technical Director with Cigital, Inc. and a founding member of the company's Office of...

Get over that first hurdle in your prototype! Authenticating a user is a tricky, but necessary step for most applications that interact with Google services. This session will discuss the available authentication options, their limitations, and some advanced use cases such as Google Apps domains and signed requests. Participants should be familiar with at least one GData API. Familiarity with p...

Google's Caja project allows mutually untrusting and untrusted web applications to run in the same context and allows them to safely communicate by regular JS function calls and reference passing. It provides tools that rewrite JS/HTML/CSS web applications to enable a wide range of security policies, allowing untrusted third party code to run in environments as dissimilar as social networks and...

Using email addresses to identify people has a problem - email addresses can be used to send, not receive. With the rise of blogs and social networks, millions of people are using URLs to refer to themselves and others. The Social Graph API indexes these sites and their connections, enabling this web-wide distributed social network to be used to make your sites better. Learn how XFN and FOAF ex...