Paseto (Platform-Agnostic Security Tokens) is everything JWT should be, but isn't (namely, secure)
Let's solve application security at an ecosystem level by updating outdated and/or insecure blog posts to refer developers to better practices.
Introducing PIE-Hosted Services to Help Further our Goals to Secure the Entire PHP Ecosystem
Our new open source library, which keeps your Certificate Authority certificate bundle up-to-date.
An analysis of the deficits in the security features offered by WordPress, Drupal, and Joomla.
A dissection of the misnomers and bad ideas used in cryptography products.
A quick guide to eliminating the common threats when developing PHP applications in 2016.
Our contributions to defuse/php-encryption and how it affects future behavior
This is our promise to the community to support PHP 5 projects until EOL, and then no later.
Or: How I learned to stop worrying and love software exploitation.
Will tomorrow bring costly and embarrassing data breaches? Or will it bring growth, success, and peace of mind?
Our team of technology consultants have extensive knowledge and experience with application security and web/application development.
Want the latest from Paragon Initiative Enterprises delivered straight to your inbox? We have two newsletters to choose from.
The first mails quarterly and often showcases our behind-the-scenes projects.
The other is unscheduled and gives you a direct feed into the findings of our open source security research initiatives.