ISO/IEC 15408, also known as Common Criteria for Information Technology Security Evaluation, Common Criteria or CC, is an international standard for testing and confirming the system security. Common Criteria supersedes the American TCSEC (Trusted Computer System Evaluation Criteria) or Orange…
This post compiles different ways to generate income when developing or managing free and open-source software (FOSS) projects. The posts goes beyond projects within the FOSS definition, and also covers related projects that fall under the definition of open core.…
This post features search engines for devices of the Internet of Things (IoT) List of IoT Search Engines IoT search engines featured on this post: Shodan Shodan is probably the most known IoT search engine. Official link FOFA FOFA is…
Single Sign-on (SSO) allows a user to access multiple applications with a single set of credentials. SSO Implementations SSO implementations: Kerberos Kerberos is both a SSO implementation and a AAA network protocol. You can read more about Kerberos on this…
Node.js is a back-end web development framework written in the programming language JavaScript. It allows to create server-side web applications in JavaScript. Take into account that JavaScript was a programming language intended initially for the client side, so JavaScript back-end…
A proxy server is a variation of an application-level firewall or circuit-level firewall. It is a server application that acts as an intermediary between a client requesting a resource and the server providing that resource. Possible proxy features: Proxy Server…
This post explains how to create an extension or add-on for Chrome or Chromium. Overview of Chrome Extension Creation Main steps to create a Chrome Extension: Developing a Chrome Extension This section explains how to develop a Chrome extension. Components…
This post is an introduction to network firewalls (FW). Firewalls should be complemented with other controls like antivirus scanners, data loss prevention (DLP) solutions and intrusion detection system (IDS) tools. Types of Firewall Firewall classification criteria: Types of Firewall by…
Electron is a framework to build cross-platform desktop application using web technologies. The main web technologies for developing in Electron are HTML, CSS and JavaScript. It also uses Node.js framework extensively. It is a free and open source software (FOSS)…
Extensive Authentication Protocol (EAP) is an authentication framework, not an actual protocol like PAP or CHAP. EAP allows customized authentication security solutions, such as supporting smartcards, tokens, and biometrics. EAP is often used in network communication protocols, such as those…