
January 20, 2016
Remember that the main point of credit card tokenization is to keep PANs (Primary Account Numbers) out of the main application-hosting environment....
Blog
January 20, 2016
Remember that the main point of credit card tokenization is to keep PANs (Primary Account Numbers) out of the main application-hosting environment....
Blog
January 06, 2016
Many commerce apps—especially ones using credit card tokenization—implement a “My Profile” type feature in which the customer can save a form of....
Blog
January 04, 2016
Side channels are unintended ways information can be observed in a system. Attackers can leverage side channels to make software divulge details that....
Blog
December 16, 2015
Many web development platforms provide libraries that handle the creation and validation of tokens with each HTTP request to prevent Cross Site....
Blog
December 08, 2015
This is the first in a series of blog posts on the topic of breaking credit card tokenization systems and is the written version of several conference....
Blog
November 05, 2015
Several years back, Microsoft shipped Windows Communication Foundation (WCF) as part of its .NET platform. The idea was simple: create a framework....
Blog
September 10, 2015
Software programs, from client-server to web to mobile, often need credentials to access a resource like a database or a web service. Storing these....
Blog
May 03, 2015
Last Friday, Bluecoat and CERT published security advisories for vulnerabilities in the administrative interface of the Bluecoat SSL Visibility....
Blog