Search Episodes (building secure software)

Find a show you like and click the button. The show will be added to your My Playlist page and updated 24/7 with new videos.

Search Results

View: Shows (1) | Episodes (13)

Sort Episodes By: Title | Most Recent | Relevance

ODCA Proof of Conce...
5 Views
23:26:57 02/24/12

ODCA Proof of Concept: OpenStack Open Source Software for Cloud Computing IT experts from Intel discuss the OpenStack proof of concept and reference architecture...

ODCA Proof of Concept: OpenStack Open Source Software for Clou...

Added 02/24/12
5 Views

ODCA Proof of Concept: OpenStack Open Source Software for Cloud Computing

[LESS INFO] 5 VIEWS | ADDED 23:26:57 02/24/12
ODCA Proof of Concept: OpenStack Open Source Software for Cloud Computing IT experts from Intel discuss the OpenStack proof of concept and reference architecture, which outlines how to build a secure, energy efficient cloud computing infrastructure with OpenStack and Intel technology. This proof of concept aligns closely with security and carbon footprint usage models from the Open Data Center Alliance. The reference architecture gives details on managing power consumption using Intel%reg Intelligent Power Node Manager, and describes the concept of a trusted compute pool, which is a collection of physical platforms known to be trustworthy, using Intel%reg Trusted Execution Technology (Intel%reg TXT) with Intel%reg Xeon%reg processors. The full reference architecture can be downloaded here: bit.ly From: channelintel Views: 415 2 ratings Time: 02:25 More in Science & Technology

Intel Cloud Builder...
12 Views
08:01:18 01/01/12

In this Intel Cloud Builders video podcast: Fujitsu explores how you can simplify the deployment and operation of cloud computing solutions using the Fujitsu PRIME...

Intel Cloud Builders Reference Architecture: Fujitsu and Build...

Added 01/01/12
12 Views

Intel Cloud Builders Reference Architecture: Fujitsu and Building a Cloud Infrastructure

[LESS INFO] 12 VIEWS | ADDED 08:01:18 01/01/12
In this Intel Cloud Builders video podcast: Fujitsu explores how you can simplify the deployment and operation of cloud computing solutions using the Fujitsu PRIMERGY BX Blade Server and Cloud Infrastructure Management Software with VMware vSphere and Microsoft System Center products, along with the latest Intel Xeon processor technology. See also: Intel Cloud Builders Guide: Cloud [...]

Intel Cloud Builder...
179 Views
08:01:18 01/01/12

In this Intel Cloud Builders video podcast: Fujitsu explores how you can simplify the deployment and operation of cloud computing solutions using the Fujitsu PRIME...

Intel Cloud Builders Reference Architecture: Fujitsu and Build...

Added 01/01/12
179 Views

Intel Cloud Builders Reference Architecture: Fujitsu and Building a Cloud Infrastructure

[LESS INFO] 179 VIEWS | ADDED 08:01:18 01/01/12
In this Intel Cloud Builders video podcast: Fujitsu explores how you can simplify the deployment and operation of cloud computing solutions using the Fujitsu PRIMERGY BX Blade Server and Cloud Infrastructure Management Software with VMware vSphere and Microsoft System Center products, along with the latest Intel Xeon processor technology. See also: Intel Cloud Builders Guide: Cloud [...]

GTAC 2011: Keynote ...
3 Views
16:27:21 10/31/11

GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction 6th Annual Google Test Automation Conference 2011 (GTAC 2011) "Cloudy With A Chance Of Tests" Comp...

GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction

Added 10/31/11
3 Views

GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction

[LESS INFO] 3 VIEWS | ADDED 16:27:21 10/31/11
GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction 6th Annual Google Test Automation Conference 2011 (GTAC 2011) "Cloudy With A Chance Of Tests" Computer History Museum Mountain View, CA USA October 26-27, 2011 Presented by Anthony Voellm. ABSTRACT The world of building software is undergoing rapid changes with the shift from desktop applications to highly connected and ubiquitous applications served from the Cloud. The shift to the Cloud poses new challenges (eq: how do you run xUnit frameworks on PAAS?) and opportunities on how to test while also creating whole new ways of testing in general (eg: fuzz testing on hundreds of machines for little cost). This talk will focus on helping you understand the challenges and opportunities while separating fact from fiction. It's time to part the Clouds and understand what lies ahead. Anthony F. Voellm currently leads the Google Cloud Test team and has a wide range of experience from kernel and database engines to graphics and automated image and map extraction from satellite images. Anthony is an avid inventor with 7 technology patents issued. He is focused on delivering Rerformance, Reliability, and Security to existing products like Google Cloud Storage and Dremel while also innovating new offerings. Prior to joining Google in 2011, Anthony held multiple roles at Microsoft leading the Microsoft Windows Reliability, Security, and Privacy test team working on Windows7+; Microsoft Hyper-V Performance Team; and SQL Server Performance team. He has also been a developer and tester on ... From: GoogleTechTalks Views: 1244 2 ratings Time: 53:13 More in Science & Technology

GTAC 2011: Keynote ...
0 Views
16:27:21 10/31/11

GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction 6th Annual Google Test Automation Conference 2011 (GTAC 2011) "Cloudy With A Chance Of Tests" Comp...

GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction

Added 10/31/11
0 Views

GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction

[LESS INFO] 0 VIEWS | ADDED 16:27:21 10/31/11
GTAC 2011: Keynote - Part the Clouds and See Fact from Fiction 6th Annual Google Test Automation Conference 2011 (GTAC 2011) "Cloudy With A Chance Of Tests" Computer History Museum Mountain View, CA USA October 26-27, 2011 Presented by Anthony Voellm. ABSTRACT The world of building software is undergoing rapid changes with the shift from desktop applications to highly connected and ubiquitous applications served from the Cloud. The shift to the Cloud poses new challenges (eq: how do you run xUnit frameworks on PAAS?) and opportunities on how to test while also creating whole new ways of testing in general (eg: fuzz testing on hundreds of machines for little cost). This talk will focus on helping you understand the challenges and opportunities while separating fact from fiction. It's time to part the Clouds and understand what lies ahead. Anthony F. Voellm currently leads the Google Cloud Test team and has a wide range of experience from kernel and database engines to graphics and automated image and map extraction from satellite images. Anthony is an avid inventor with 7 technology patents issued. He is focused on delivering Rerformance, Reliability, and Security to existing products like Google Cloud Storage and Dremel while also innovating new offerings. Prior to joining Google in 2011, Anthony held multiple roles at Microsoft leading the Microsoft Windows Reliability, Security, and Privacy test team working on Windows7+; Microsoft Hyper-V Performance Team; and SQL Server Performance team. He has also been a developer and tester on ... From: GoogleTechTalks Views: 1137 2 ratings Time: 53:13 More in Science & Technology

Salesforce CRM for ...
2 Views
03:23:26 10/19/11

Salesforce CRM for Wealth Management Salesforce for Wealth Management allows financial advisors to manage their book of business in an easy to use, customizable ...

Salesforce CRM for Wealth Management

Added 10/19/11
2 Views

Salesforce CRM for Wealth Management

[LESS INFO] 2 VIEWS | ADDED 03:23:26 10/19/11
Salesforce CRM for Wealth Management Salesforce for Wealth Management allows financial advisors to manage their book of business in an easy to use, customizable and secure fashion. The Wealth Management edition is build on top of Salesforce's award winning Sales Cloud and is already trusted by 1000s of advisors. Access or share information with the confidence that comes from enterprise-class security -- regardless of whether you are using a computer or a mobile device. And because Salesforce is 100% cloud, there's no hardware or software to install, backup, or maintain. From: salesforce Views: 757 10 ratings Time: 02:46 More in Science & Technology

Cloud Common Sense
15 Views
11:05:00 09/14/11

The byline for this piece about cloud computing is great. It a sarcastic comment about problems in the cloud, and if you read it, then maybe you won't think ...

Cloud Common Sense

Added 09/14/11
15 Views

Cloud Common Sense

[LESS INFO] 15 VIEWS | ADDED 11:05:00 09/14/11
The byline for this piece about cloud computing is great. It a sarcastic comment about problems in the cloud, and if you read it, then maybe you won't think every problem in the cloud is cause for the complete abandonment of cloud computing as a tool in your technology toolbelt. As cloud vendors grow, they often standardize and build more homogenous infrastructures that could have cascading failures. We've seen this in the past with hosting companies that provided data center services, and we've seen it in large companies that centralize and standardize their systems. When I started my career, I saw in in mainframe computing as well. That was more amusing as we would all stand up in our cubes, and if you saw a significant number of others standing up, you knew the entire mainframe was down. These days I think Twitter lets us know as quick as any monitoring software when there's a large outage. That's assuming Twitter isn't down. Read the rest of " Cloud Common Sense" at SQLServerCentral.

Precious Ideas
13 Views
23:41:27 05/14/10

The last line says it all, though it might offend a few of you. Jeremiah Peschka wrote a great piece on encrypted stored procedures and telling companies they sho...

Precious Ideas

Added 05/14/10
13 Views

Precious Ideas

[LESS INFO] 13 VIEWS | ADDED 23:41:27 05/14/10
The last line says it all, though it might offend a few of you. Jeremiah Peschka wrote a great piece on encrypted stored procedures and telling companies they shouldn't bother. I agree, the arguments given in the comments notwithstanding. I have heard this argument over and over, from different industries, and in every case where someone has broken down their code, you find it really isn't that special. There's no super secret way to accomplish most anything you're going to put into a stored procedure on a database server. We have to know how things work from a logic standpoint so that we can be sure that the correct data is moving to the correct place. If we know the logic, we can easily build code that does the same thing ourselves. We just don't want to. We buy software so that we don't have to spend the time coding it ourselves. ___ Read the rest of " Precious Ideas " at SQLServerCentral.

Gary McGraw, "The B...
50 Views
00:30:00 10/08/09

As a discipline, software security has made great progress over the last decade. There are now at least 46 large scale software security initiatives underway in en...

Gary McGraw, "The Building Security In Maturity Model (BSIMM)"

Added 10/08/09
50 Views

Gary McGraw, "The Building Security In Maturity Model (BSIMM)"

[LESS INFO] 50 VIEWS | ADDED 00:30:00 10/08/09
As a discipline, software security has made great progress over the last decade. There are now at least 46 large scale software security initiatives underway in enterprises including global financial services firms, independent software vendors, defense organizations, and other verticals. In 2008, Brian Chess, Sammy Migues and I interviewed the executives running nine initiatives using the twelve practices of the Software Security Framework as our guide. Those companies among the nine who graciously agreed to be identified include: Adobe, The Depository Trust and Clearing Corporation (DTCC), EMC, Google, Microsoft, QUALCOMM, and Wells Fargo. The resulting data, drawn from real programs at different levels of maturity was used to guide the construction of the Building Security In Maturity Model (BSIMM). This talk will describe the observation-based maturity model, drawing examples from many real software security programs. A maturity model is appropriate because improving software security almost always means changing the way an organization works---people, process, and automation are all required. While not all organizations need to achieve the same security goals, all successful large scale software security initiatives share common ideas and approaches. Whether you rely on the Cigital Touchpoints, Microsoft's SDL, or OWASP CLASP, there is much to learn from practical experience. Since its March release, the BSIMM is being expanded to include BSIMM Europe, BSIMM II, and BSIMM Lite. Use the BSIMM as a yardstick to determine where you stand and what kind of software security plan will work best for you.

Cassio Goldschmidt,...
32 Views
02:30:00 02/05/09

If you create an application that runs on one or more computers connected to a network such as the internet, your code will be attacked. Consequences of com...

Cassio Goldschmidt, "The dark side of software engineering and...

Added 02/05/09
32 Views

Cassio Goldschmidt, "The dark side of software engineering and how to defend against it"

[LESS INFO] 32 VIEWS | ADDED 02:30:00 02/05/09
If you create an application that runs on one or more computers connected to a network such as the internet, your code will be attacked. Consequences of compromised systems often include loss of trust, reputation and revenue. Software will always have defects and vulnerabilities. Strikes against digital assets are unquestionably on the rise. We can, however, make it substantially harder to find and exploit vulnerabilities by identifying insecure coding practices and developing secure alternatives. During this practical session, we'll examine in detail the principles behind some of the worst attack patterns seen today in the software industry. Most importantly, we'll learn effective defense programming techniques every developer must employ when building software.

Yuecel Karabulut, "...
49 Views
00:30:00 10/09/08

Software vendors have traditionally focused on improving code quality for improving software security and quality. The code quality improvement effort aims towar...

Yuecel Karabulut, "Measuring the Attack Surfaces of Enterprise...

Added 10/09/08
49 Views

Yuecel Karabulut, "Measuring the Attack Surfaces of Enterprise Software Systems"

[LESS INFO] 49 VIEWS | ADDED 00:30:00 10/09/08
Software vendors have traditionally focused on improving code quality for improving software security and quality. The code quality improvement effort aims toward reducing the number of design and coding errors in software. In principle, we can use formal correctness proof techniques to identify and remove all errors in software with respect to a given specification and hence remove all its vulnerabilities. In practice, however, building large and complex software devoid of errors, and hence security vulnerabilities, remains a very difficult task. Software vendors can minimize the risk associated with the exploitation of future vulnerabilities. One way to minimize the risk is by reducing the attack surfaces of their software. A smaller attack surface makes the exploitation of the vulnerabilities harder and lowers the damage of exploitation, and hence mitigates the security risk. We believe that a complete risk mitigation strategy requires a combination of code quality efforts and attack surface measurement. SAP and CMU collaborated to develop a new attack surface measurement method for measuring the attack surfaces of SAP software systems implemented in Java. We implemented a tool and demonstrated the feasibility of our approach by measuring the attack surface of an SAP software system. In this talk, we will present the attack surface measurement method and report on its application.

Breaking Point Live...
10 Views
18:29:30 10/01/08

BreakingPoint Labs Dennis Cox, BreakingPoint CTO, sits down with Kris Raney to talk software on the control layer, Tcl interface, network equipment testing and bui...

Breaking Point Live Look Tcl Interface & Corvette Interiors

Added 10/01/08
10 Views

Breaking Point Live Look Tcl Interface & Corvette Interiors

[LESS INFO] 10 VIEWS | ADDED 18:29:30 10/01/08
BreakingPoint Labs Dennis Cox, BreakingPoint CTO, sits down with Kris Raney to talk software on the control layer, Tcl interface, network equipment testing and building a corvette from scratch.

OnSecurity - Softwa...
5 Views
18:55:39 12/12/07

The world's leading Software Security authority, Dr. Gary McGraw, CTO Cigital, Inc. discusses the need for security throughout the software development lifecycle, ...

OnSecurity - Software Security: Building Security In with Gary...

Added 12/12/07
5 Views

OnSecurity - Software Security: Building Security In with Gary McGraw

[LESS INFO] 5 VIEWS | ADDED 18:55:39 12/12/07
The world's leading Software Security authority, Dr. Gary McGraw, CTO Cigital, Inc. discusses the need for security throughout the software development lifecycle, and how to break the barriers to security implementation in software engineering.

Introduction to Channels.com

Sign in to Channels.com!

Search Results