February 2008 - Posts
16 February 2008
Forgot password security design
To err is human. To forget is even more human Let’s delve into some of the design considerations. Your comments are greatly appreciated. 1. Pre-Canned Questions or User Defined Questions ? My colleague Rocky blogged about it. A must read! 2. Never send
Read More...
Home
Email
Security is not a eight letter word
RSS 2.0
Atom 1.0
Recent Posts
[rant] SSL=Security
Forgot password security design
Security Summit 2007
CryptAcquireContext with CRYPT_SILENT flag
SQL sevrer Lock table and Hollywood business
Tags
authentication
Bad
code review
dpapi
efs
General
hash
iis
password
RMS
SSL
threats
tips
Archives
July 2008 (1)
February 2008 (1)
November 2007 (1)
October 2007 (6)
September 2007 (2)
April 2007 (1)
Search
Go
Links
Michael Howard
ACE team
This blog is provided "AS IS" with no warranties, and confers no rights. Opinions are not necessarily of Microsoft.
