Explore potential cryptography issues, the risks associated with them, and learn how to avoid them.
- Cryptography is a very hard subject for most developers.…Thankfully, those that do understand cryptography…are very good at it…and make things easier for the rest of us,…assuming we follow the rules correctly.…So let's start by talking about the security risks…associated with broken cryptography.…First and most common is the use…of broken cryptographic routines.…
Now the term broken is a little overloaded here.…When I say broken, most often it means…that the algorithm has been cracked,…theoretically can be cracked,…or has a flaw that has been identified.…Many developers implement an algorithm for encryption,…hashing, or digital signatures that they have used before…but it may no longer be considered safe.…The mitigation for these flaws…is quite simply to use the latest and greatest algorithms…that serve the current and possibly future purposes.…
Now you don't need to be bleeding edge…but you do need to use algorithms…that are not yet cracked and I do mean not yet.…There is a risk that cracking…will be possible in the future for any algorithm.…
AuthorFrank P Moley III
- Understanding attackers and risks
- Documenting your risks
- Issues related to web client–server interactions
- Issues related to thick app and client–server interactions
- Authorization and cryptography issues
- Implementing security in each phase of the software development life cycle
Skill Level Beginner
What you need to know1m 35s
1. Security and Risk Overview
2. Web Client Server Interaction Code Issues
3. Thick App and Client-Server Interaction Issues
4. Crypto and Security Misuse Issues
5. Security in the SDLC
Next steps2m 10s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.