07 Jun 2012 » The History of Password Security
A summary of how password authentication and security functions have evolved since the 1970s, and an interesting look at concepts like salting which were used way before you'd probably expect.
06 Jun 2012 » Storing Passwords Securely
Why "SHA 256-bits enterprise-grade password encryption" is only slightly better than storing passwords in plain text, and better ways to do it.
19 Apr 2012 » What's Old Is New Again
A new security vulnerability in OpenSSL turns out to have been included in a book about finding security vulnerabilities, 6 years ago!
22 May 2011 » Security Through Obscurity
Why I think the increasingly popular 'That's not security. That's obscurity.' attitude is unhelpful.