spencer741 – WindowsTechs.com

Options for Integrating or developing a physical security solution (physical access control via in-house mobile apps [NFC/Bluetooh])

Posted on May 8, 2021 by spencer741

Our team is looking to either integrate or develop a physical security solution for a rather large campus.
Requirements:
Ability to either integrate (with reader/electronic lock hardware) from our mobile apps which would allow access contr… Continue reading Options for Integrating or developing a physical security solution (physical access control via in-house mobile apps [NFC/Bluetooh])→

Securing initial static content after login

Posted on March 18, 2021 by spencer741

I am using (cookie-less) token-based authentication. I have a gateway SPA that handles all of my login services and a App SPA.

UserName and password are sent to backend, user is authenticated, access token is generated and returned to the… Continue reading Securing initial static content after login→

Securing initial static content after login

Posted on March 18, 2021 by spencer741

I am using (cookie-less) token-based authentication. I have a gateway SPA that handles all of my login services and a App SPA.

UserName and password are sent to backend, user is authenticated, access token is generated and returned to the… Continue reading Securing initial static content after login→

What is the best defense for a multi-layered attack: Spoofing, MiTM, Login CSRF?

Posted on March 7, 2020 by spencer741

How would one go about defending against this sort of attack to best protect a sloppy user? There can be obvious signs of a spoofing attack, such as not using SSL, slightly different domain, etc, but I am assuming Tristed.com (the maliciou… Continue reading What is the best defense for a multi-layered attack: Spoofing, MiTM, Login CSRF?→