-
Matthew McCullough 4.58
Description:
Does your application transmit customer information? Are there fields of sensitive customer data stored in your DB? Can your application be used on insecure networks? If so, you need a working knowledge of encryption and how to leverage Open Source APIs and libraries to make securing your data as easy as possible. Encryption is quickly becoming a developer’s new frontier of responsibility in many data-centric applications.
In today’s data-sensitive and news-sensationalizing world, don’t become the next headline by an inadvertent release of private customer or company data. Secure your persisted, transmitted and in-memory data and learn the terminology you’ll need to navigate the ecosystem of symmetric and public/private key encryption.
Comments on this Talk
Only nitpick I have is the diagram describing Diffie-Hillman wasn't very helpful. If it could be split up into different diagrams or reduce the amount of text that'd be great.
Otherwise, very useful!
mtnaseef,
14 Jan 10:55 PM
I felt the code samples didn't match the rest of the topic of the discussion - like there were two talks: the main one on encryption issues and a side topic of how coding in the standard JCE libraries is a nuisance. If the main goal of the talk is to help us devs figure out how to relieve some of that pain, then a bit of tweaking may be needed. In any case, I did really enjoy the talk and found it helpful.
axiom6,
16 Jan 12:02 AM
I liked learning how many of today's encryption ciphers have been cracked with round about approaches like Rainbow patterns and even cloud computing
I'd leave out the ROT introduction. Software engineers should already be aware of ROT. The font made references to Java path names and classes confusing. I think trust store and key store could be expressed more clearly with pictures, in how data is stored and how they are used.