Windows Azure = Security + Privacy + Compliance

Never have I been able to have a conversation about the Cloud without having the question asked of me: “What about security, privacy, and compliance?” Unlike some other folks that I know, I don’t shy away from having this discussion as I am of the opinion that, though a bit complicated to explain quickly, there’s…


Security Risks and Recommendations for Mobile Apps

For the purposes of the below, let’s set the context that mobile apps include both Windows 8 and Windows Phone apps. Windows 8 introduced several security features, which are being rolled out gradually. Secure Boot, Early Launch Antimalware, as well as the new AppContainer technology added the security controls and features needed to enable developers…


Building Secure Windows Phone 8 Apps – APIs and Techniques

Security on the Brain Security is something we all know is important, but is it something that we always do? Most likely, not always. That’s partially because security is complex and takes time to implement. Many of you, these days, don’t have that time (it’s all about shortest time-to-market, right?) to think about security. You…


Building Secure Windows Phone 8 Apps – The Platform

Security on the Brain Security is something we all know is important, but is it something that we always do? Most likely, not always. That’s partially because security is complex and takes time to implement. Many of you, these days, don’t have that time (it’s all about shortest time-to-market, right?) to think about security. You…


Security Code Review Techniques–SQL Injection Edition

Security on the Brain Security is something we all know is important, but is it something that we always do? Most likely, not always. That’s partially because security is complex and takes time to implement. Many of you, these days, don’t have that time (it’s all about shortest time-to-market, right?) to think about security. You…


Building Secure Windows Store Apps

Security on the Brain Security is something we all know is important, but is it something that we always do? Most likely, not always. That’s partially because security is complex and takes time to implement. Many of you, these days, don’t have that time (it’s all about shortest time-to-market, right?) to think about security. You…


Security Code Review Techniques: Cross-Site Scripting Edition

Security on the Brain Security is something we all know is important, but is it something that we always do? Most likely, not always. That’s partially because security is complex and takes time to implement. Many of you, these days, don’t have that time (it’s all about shortest time-to-market, right?) to think about security. You…


A Simple and Practical Approach to Security

Security on the Brain In his guest blog post below, Neil McIsaac talks about the importance of thoroughly understanding and implementing security requirements to keep applications safe. Of course, that’s something that we all know, but is it something that we always do? Most likely, not always. That’s partially because security is complex and takes…