Entries tagged with security - Channel 9

endpoint.tv - Securing RESTful services with ASP.NET Membership

rojacobs — Sat, 18 Oct 2008 12:12:00 GMT

So you have a really cool website using AJAX. Great look and feel with high performance. Sure you have Forms Authentiation enabled but how do you secure your services? Can you use WCF and ASP.NET Membership together?

In this episode of endpoint.tv you will learn the 7 steps to securing your services and AJAX client from Rob Bagby.

La Sicurezza Applicativa

PietroBrambati — Tue, 14 Oct 2008 11:58:00 GMT

Intervista a Mario Fontana sul percorso formativo sulla sicurezza applicativa.
Il percorso è suddiviso in arene tematiche: Security Basics, Platform, Framework .NET, Web Applications, Web Service, ALM, Mobile. Il percorso è consultabile sul sito MSDN all'url: http://msdn.microsoft.com/it-it/cc299384.aspx
Attenzione al finale.

endpoint.tv - Securing RESTful services with ASP.NET Membership

rojacobs — Thu, 18 Sep 2008 15:02:00 GMT

About the security of Web application

sachin vijay — Mon, 14 Jul 2008 05:41:17 GMT

Hi sir,
         I am working on an application and i wants that the admin of web app have the full right to access the all app and the user access only a specify area.I already created the user and admin account from asp.net security but i am unable to apply right and security. Plz help me ........
             Thanx in advance
                                   Sachin vijay

Configuresoft- Security & Management in virtual world

Sureshs — Wed, 25 Jun 2008 14:28:00 GMT

Warren Wilbee, Director of ISV evangelism for west region sits down with Dennis Moreau ( didn’t catch the name properly) CTO( include the title) at Configuresoft to talk about how Configuresoft is enabling their solution built on top of Microsoft platform to enable large enterprises manage security and compliance in complicated IT environements. Configuresoft is a provider ofenterprise server configuration management company, bringing intelligence and automation to IT operations.

BlueHat: Cesar Cerrudo on token kidnapping in Windows

Dan — Tue, 17 Jun 2008 17:48:00 GMT

Katie Moussouris interviews Cesar Cerrudo on token kidnapping in Windows at BlueHat v7, Microsoft’s security conference. Cesar talks about design weaknesses that allow elevation of privilege in Windows. Even Cesar says we have a hard job in trying to protect users, while making sure we don’t break anything.

TechNet Radio: NAP Deployment from a Customer Perspective

erickingfrog — Tue, 17 Jun 2008 08:37:00 GMT

Hear Microsoft customers talk about how they deployed Network Access Protection (NAP) within their organizations. In this TechNet Radio session, Kevin Remde and Jeff Sigman talk with Chris Boscolo of Napera Networks, Alex Chalmers of Ball State University, and Pattabhi Attaluri of Avenda Systems.

BlueHat: Manuel Caballero & Fukami on scripts, cross-domain attacks, and Flash/Silverlight security

Dan — Mon, 16 Jun 2008 21:59:00 GMT

Katie Moussouris interviews Manuel Caballero & Fukami on resident scripts and global cross domain attacks, plus a comparison of Flash and Silverlight security at BlueHat v7, Microsoft’s security conference. Manuel takes us through the scary world of resident scripts that invisibly follow you while you surf. Fukami performs security analysis of similar browser plug-in technologies: Flash and Silverlight.

BlueHat: Dan Kaminsky on security threat research

Dan — Mon, 16 Jun 2008 21:39:00 GMT

Katie Moussouris interviews interviews Dan Kaminsky on some interesting research he’s been doing lately at BlueHat v7, Microsoft’s security conference. Dan has a way of turning even the scariest of security threats into an opportunity to RickRoll. Count the number of times we say “RickRoll” during this enlightening interview.

BlueHat: Alex “kuza55” K. on client-side issues with browsers, plug-ins, and web applications

Dan — Mon, 16 Jun 2008 21:39:00 GMT

Katie Moussouris interviews Alex “kuza55” K. on interesting client-side issues when you look at browsers, plug-ins, and web applications together at BlueHat v7, Microsoft’s security conference. Alex examines esoteric parts of browsers and plug-ins which lead to web applications being exploitable via client-side issues.

BlueHat: SoWhat from Nevis Labs on fuzzing anti-virus products

Dan — Mon, 16 Jun 2008 21:38:00 GMT

Katie Moussouris interviews SoWhat from Nevis Labs based in Bejing on fuzzing anti-virus products at BlueHat v7, Microsoft’s security conference. SoWhat describes some of the common application security testing methodologies as they apply to security products. Who’s watching the watchers, and what can AV software vendors do to improve their products.

BlueHat: Billy Rios on what the phishers are up to

Dan — Mon, 16 Jun 2008 21:37:00 GMT

Katie Moussouris interviews Billy Rios on what the phishers are up to at BlueHat v7, Microsoft’s security conference. Billy describes the interesting results of his research with fellow speaker Nitesh Dhanjani. Learn if these phishers are really the Einsteinian Ninja Hackers the media portrays them to be.

BlueHat: Bryan Sullivan on being a Microsoft Security Grunt

Dan — Mon, 16 Jun 2008 21:35:00 GMT

Katie Moussouris interviews Bryan Sullivan on what it’s like to be a Microsoft Security Grunt at BlueHat v7, Microsoft’s security conference. Bryan counters the Popular Science Top Ten Worst Jobs in Science with his take on what it’s really like to work for the group that is responsible for securing Microsoft’s current and future products.

WCF at Turner Broadcasting in Atlanta

kirke — Wed, 11 Jun 2008 16:21:00 GMT

Kirk Evans talks with Hongwei Yan at Turner Broadcasting in Atlanta about what Turner is doing with WCF and WS-Security. Hongwei is an Architect who has been working with WCF for about the past 3 years and has built some very interesting solutions.

TechNet Radio: Microsoft Forefront Codename “Stirling” Overview (Part 2 of 2)

erickingfrog — Tue, 10 Jun 2008 10:03:00 GMT

In the second part of our overview on Microsoft Forefront codename “Stirling,” we cover the next-generation versions of Forefront Client Security, Forefront Security for Exchange Server, Forefront Security for SharePoint, and Microsoft Internet Security & Acceleration Server (ISA), which is to be renamed the Forefront Threat Management Gateway. We also have our June 2008 Security Bulletin.

TechNet Radio: Microsoft Forefront Codename “Stirling” Overview (Part 1 of 2)

erickingfrog — Tue, 03 Jun 2008 08:54:00 GMT

Microsoft Forefront codename “Stirling” is an integrated security system that delivers comprehensive, coordinated protection across endpoints, messaging, and collaboration applications. It also provide the network edge that is easier to manage and control. By delivering simplified management and providing critical visibility into threats, vulnerabilities, and configuration risks, “Stirling” helps you reduce costs and achieve greater insight into your enterprise security state. Attend this session to get an overview of this new security system from Microsoft.

Sicher Entwickeln: .NET 3.5 SP1 Security Changes

Dariusz — Fri, 16 May 2008 09:32:29 GMT

Dieser Teil von "Sicher Entwickeln" behandelt zwei Änderungen im Bereich Security im Service Pack 1 für das .NET Framework 3.5.

"Strong Name Bybass" und "FullTrust on the LocalIntranet"

Beide Änderungen haben einen erheblichen Einfluß auf die Art und Weise wie Anwendungen ausgeführt werden. Mehr dazu im Podcast.

Viel Spaß beim reinhören, Dariusz

TechNet Radio: Leveraging the Windows Live Platform for Your Organization

erickingfrog — Tue, 13 May 2008 21:22:41 GMT

Listen to TechNet Radio and learn how you can leverage the benefits of the Windows Live platform for your organization. We discuss Windows Live ID; Microsoft Silverlight Streaming; and the Windows Live Admin Center, which allows you to manage a slice of Windows Live. We also have our May 2008 Security Bulletin

Eric Ostrowski - Your Show Host and TechNet Radio Producer

Angus Logan – Senior Product Manager, Windows Live

Nam Ng – Senior Security Strategist

Bill Sisk – Response Communications Manager, Trustworthy Computing

TechNet Radio: Get More Security and Control with Mobile Device Manager

erickingfrog — Tue, 06 May 2008 16:51:18 GMT

In this TechNet Radio session, learn how you can improve secure access to corporate data and line-of-business (LOB) applications and simplify management of Windows Mobile powered devices with Microsoft System Center Mobile Device Manager. We explain how System Center Mobile Device Manager provides integration into Active Directory, rich inventory and reporting tools, secure virtual private network (VPN) access, and more.

Eric Ostrowski - Your Show Host and TechNet Radio Producer

Jason Langridge – Jason Langridge is an enterprise mobility solution specialist in the devices division at Microsoft, where he is responsible for business development of major enterprise accounts. Jason has been with the company since 1998, working to help enterprises to become more mobile, agile, and flexible so that they can achieve the next level of productivity.

TechNet Radio: How Microsoft IT Uses System Center Configuration Manager 2007 to Extend Network Health

erickingfrog — Tue, 29 Apr 2008 17:17:29 GMT

In this TechNet Radio session, you learn how Microsoft System Center Configuration Manager 2007 ensures that computers connecting to or communicating on the network meet the organization's requirements for system health. By implementing System Center Operations Manager 2007, Microsoft IT is able to enforce security and compliance, as well as target policies to specific forest and domains within Microsoft.

Eric Ostrowski - Your Show Host and TechNet Radio Producer

Chris Avis – IT Pro Evangelist

Richard Dixon - Richard Dixon is a Microsoft IT Sr. Systems Engineer. He has worked in IT since 1990. He has been working with SMS/ConfigMgr for 8 years. He started out as a Help Desk Analyst, moved to Help Desk Supervisor and ultimately to Engineering and designing SMS/ConfigMgr. His original acquired skills are in SQL Server DBA, Visual programming and report management and design which has greatly helped in designing and engineering ConfigMgr 2007 for NAP.

TechNet Radio: Extend Network Access Protection Using Microsoft System Center Configuration Manager

erickingfrog — Tue, 22 Apr 2008 16:52:05 GMT

Learn how Microsoft System Center Configuration Manager can extend the capabilities of the Network Access Protection (NAP) feature in Windows Server 2008. Jeff Wettlaufer, System Center technical product manager, interviews Jeff Sigman, senior program manager for NAP, in this episode of TechNet Radio.

Eric Ostrowski - Your Show Host and TechNet Radio Producer

Jeff Wettlaufer - Technical Product Manager - System Center

Jeff Sigman - Senior Program Manager - NAP

This Week on Channel 9: April 17th Episode

Dan — Fri, 18 Apr 2008 06:46:22 GMT

This Week on Channel 9, Dan and Brian cover:

- Updates to Live Maps and Virtual Earth 3D - including export GPS, new traffic-based directions, importing of 3D models into VE 3D (add a massive 9-guy on campus), MapCruncher for overlays of user-generated information (stadium seats), and more (0 - 2:41)
- .NET 3.5 Training Kit - ASP.NET Dynamic Data, MVC, Silverlight, etc, via Greg Duncan (2:41 - 3:30)
- Follow up from last week: .NET Rocks episode with Jon Goodyear on how to program SMS (3:30 - 5:26)
- Follow up story: Gizmodo has first video of a Surface at an AT&T store showing interactive AT&T coverage map, dynamic device colors, information and even phone comparison. (5:26 - 8:06)
- Symantec releases study showing Microsoft is #1 in fewest days in average response time for security vulnerabilities via Matt Hardman (8:06 - 9:51)
- Dan and Brian's reaction to the internal leaked Vista SP1 video and Microsoft's original response. (via forums). (9:51 - 12:28)
- The Channel 9 Dev team releases Developer Diary, a recurring weekly show on what features they're working on (12:28 - 13:18)
- The N+ Dev Team talks about how you build an Xbox Live Arcade game and how you program against lag (13:18 - 14:50)
- Dan's Pick of the Week: 15-year old Ashish Dergawan's Coding4Fun article on how to convert a laser pointer into a mouse by using a motion tracking web camera (14:50 - 16:30)
- Brian's Pick of the Week: IIS Pack for bit-rate throttling of Web Videos via Vishal Sood (16:30 - end)

Note: there were some issues with stale frames when a static image is shown in the video. We'll try re-posting an updated version, but just wanted to get this one up now.

Sicher Entwickeln: User Account Control

Dariusz — Thu, 03 Apr 2008 09:48:53 GMT

"Sicher Entwickeln - Sicherheit geht Entwickler an!" mit der zweiten Episode zum Thema User Account Control. Heute zu Gast Dominick Baier, von der OOP 2008.

User Account Control ist seit Windows Vista fester Bestandteil des Betriebssystems und ist ein wichtiger Sicherheitsmechanismus. Entwickler haben gemischte Gefühle wenn es darum geht mit UAC zu arbeiten, in diesem Podcast beleuchtet Dominick Baier User Account Control und die Entscheidung von Microsoft es einzuführen.

Viel Spaß beim zu hören.

Dariusz

Shawn Richardson: A winding road to Software Security

Charles — Wed, 26 Mar 2008 18:46:21 GMT

From being an economics major and MBA to working with a veterinary ophthalmologist in Florida, Shawn Richardson tell us about her non-linear path into the world of technology. As a security program manager, Shawn is on the Windows Security Assurance team where they make sure the OS, when it goes out the door, is as secure as possible. (Plus, Shawn gets to personally sign off on the security of the OS. Cool!) She’s been at Microsoft over six years, and a time that really stands out for her was when she volunteered to help during the Blaster virus breakout. She realized then the impact we have on our customers, whether it’s our moms or the largest enterprise companies in the world, and helping to do the right thing for our customers no matter what is a very important part of her work philosophy today.

TechNet Radio: SQL 2008 Part 2 of 2: Management, Troubleshooting and Throttling

erickingfrog — Tue, 11 Mar 2008 20:18:13 GMT

Bryan von Axelson talks with industry experts Kimberly Tripp and Paul S. Randal about what’s new in SQL 2008. Part two focuses on Management, Troubleshooting and Throttling. We also have our monthly Security Bulletin.

Eric Ostrowski - Your Show Host and TechNet Radio Producer

Bryan Von Axelson – IT Pro Evangelist

Kimberly L. Tripp - Kimberly L. Tripp is a SQL Server MVP and a Microsoft Regional Director and has worked with computers since 1985. Her career with database technologies began with IBM in 1988 and with Microsoft SQL Server in 1990. Since 1995, Kimberly has worked as a Speaker, Writer, Trainer and Consultant for her own company SYSolutions, Inc. (aka SQLskills.com). Kimberly is a writer/editor for SQL Server Magazine; was a founding writer for T-SQL Solutions magazine; was a technical contributor for the SQL Server 2000 Resource Kit; and co-authored the MSPress title SQL Server 2000 High Availability Kimberly has presented lectures and seminars at Microsoft TechEd and other SQL Server-related events since 1996 and is consistently top-rated both on quality of technical content and presentation style.

Paul S. Randal - Paul S. Randal is the Managing Director of SQLskills.com, which he runs with his wife Kimberly L. Tripp. Paul started in the industry in 1994 working for DEC on the VMS file system and its check/repair tools (the equivalent of chkdsk for NTFS. In 1999 he moved to Microsoft to work on SQL Server, specifically on DBCC. For SQL Server 2000, he concentrated on index fragmentation - well, removing it! In 2007, after 8.5 years on the SQL Server team, Paul left Microsoft to join Kimberly running SQLskills.com and pursuing his new-found passion for presenting and consulting. Paul regularly presents at conferences and user groups around the world on high-availability, disaster recovery, database maintenance, and Storage Engine internals.