security Archives - IT Nursery

Programming, security

IT Nursery

SSO with CAS or OAuth?

I wonder if I should use the CAS protocol or OAuth + some authentication provider for single sign-on. Example Scenario: A User tries ...

June 2, 2022
0 Comments

Programming, security

IT Nursery

Docker and securing passwords

I’ve been experimenting with Docker recently on building some services to play around with and one thing that keeps nagging me has been ...

May 29, 2022
0 Comments

What is the difference between a cer, pvk, and pfx file?

What is the difference between a cer, pvk, and pfx file? Also, which files do I keep and which am I expected to ...

May 25, 2022
0 Comments

SHA512 vs. Blowfish and Bcrypt [closed]

As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, ...

May 25, 2022
0 Comments

JWT refresh token flow

I’m building a mobile app and am using JWT for authentication. It seems like the best way to do this is to pair ...

May 24, 2022
0 Comments

Will web browsers cache content over https

Will content requested over https still be cached by web browsers or do they consider this insecure behaviour? If this is the case ...

May 22, 2022
0 Comments

Where to store JWT in browser? How to protect against CSRF?

I know cookie-based authentication. SSL and HttpOnly flags can be applied to protect cookie-based authentication from MITM and XSS. However, more special measures ...

May 22, 2022
0 Comments

Payment Processors – What do I need to know if I want to accept credit cards on my website? [closed]

As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, ...

May 21, 2022
0 Comments

What is a retpoline and how does it work?

In order to mitigate against kernel or cross-process memory disclosure (the Spectre attack), the Linux kernel1 will be compiled with a new option, ...

May 20, 2022
0 Comments

How do I create a self-signed certificate for code signing on Windows?

How do I create a self-signed certificate for code signing using tools from the Windows SDK? 7 Answers 7

May 20, 2022
0 Comments