Enterprise Certificate Pinning in Windows 10 Creators Update

Now more than ever, organizations are becoming increasingly more concern with man-in-the-middle attacks.  The Windows 10 Creators Update introduces Enterprise Certificate Pinning that enables IT Professionals to create their own key-pinning rules for their internal (enterprise) domain names.  With this technology, you can create and deploy pinning rules for your internal Active Directory domain names…

0

Null and Empty Discretionary Access Controls

This is a past investigation I shared on another blog years ago.  Security descriptors seem like a simple concept; yet they can be quite confusing.  IT professionals learn about security descriptors differently from developers.  For a developers, its fairly straightforward– they’re only interested in the permission they need to perform an action.  Developers need not…

0

Hello world!

It only seems fitting to begin anything in IT with the ever familiar “Hello world”.   The birth and desire of CryptGenRandom was not to just “borrow” an old crypto API function for its name, but to provide a broad range of IT topics.  That said, most of the topics will focus on security (that is…

1