If you're planning on implementing the W3C and FIDO Alliance's new WebAuthn standard for hardware security token support, skip ECDAA for now.
An analysis of the deficits in the security features offered by WordPress, Drupal, and Joomla.
Announcing the first release of CMS Airship, which establishes the new PHP security platinum standard of today and the gold standard of tomorrow.
A layman's introduction to using Halite, our libsodium wrapper
A deep dive into the cryptography protocols that will secure your blog, should you choose to deploy CMS Airship.
How to authenticate a user on multiple domains without violating the Same Origin Policy.
Salted Password Hashing with Argon2, Scrypt, Bcrypt, and PBKDF2
Or: How I won the password hashing category for the Underhanded Crypto Contest at DEFCON 23.
Login forms with a remember me checkbox are a common requirement. We explore the security of login forms and a robust model for remember me checkboxes.
Will tomorrow bring costly and embarrassing data breaches? Or will it bring growth, success, and peace of mind?
Our team of technology consultants have extensive knowledge and experience with application security and web/application development.
Want the latest from Paragon Initiative Enterprises delivered straight to your inbox? We have two newsletters to choose from.
The first mails quarterly and often showcases our behind-the-scenes projects.
The other is unscheduled and gives you a direct feed into the findings of our open source security research initiatives.