12Robots.com - Jason Dean

Wha sup, yo?

Wed, 01 Sep 2010 08:07:00 -0500

Wow. Things have been busy and I have been neglecting my blog. I feel bad about that. My blog is so important to me, and things have been keeping me away. I am a teacher at heart. I love to teach. That is why I blog, that is why I present at conferences, and that is why I am going to grad school. So the fact that I have been unable to blog for a while upsets me greatly. But I want to tell you a little bit about why. This is not about making excuses. This is about what is keeping me busy and what I am learning about. It will also motivate me to blog about these things, and that's the important part. [More]

My Presentation slides from cf.Objective, NCDevCon, and CFUnited

Thu, 19 Aug 2010 07:14:00 -0500

I keep forgetting to do this. Sorry :( I have given three presentations so far this year, and I will have 2 or three more et before the end of the year. Here are the slides for the first three in both Keynote and PDF formats. [More]

Adding more resource navigator filters to ColdFusion Builder (Eclipse)

Tue, 10 Aug 2010 12:19:00 -0500

One thing that has always bugged the crap out of me is our inability to add additional resource filters to the navigator view in Eclipse. Specifically, I mean these: Resource filters are very useful little tools that will hide anything that matches the filter from the navigator view. Which is great for things like .svn folders or any other crap you don't feel like you need distracting you at the moment. Like if you want to hide all the images in a project so that it is not as cluttered. But for some reason, we have never been able to add our own filters. So I can't, for example, hide the stupid Settings.xml file that CFB likes to add to my projects or the .settings folder. Grrrrr!! [More]

Enabling Access to the Adobe AIR Tools in ColdFusion Builder

Wed, 28 Jul 2010 16:29:00 -0500

I was talking to Charlie Arehart today after his "Hidden Gems in ColdFusion Builder" presentation at CFUnited 2010 and I mention that, for some reason, ColdFusion Builder has the Adobe AIR packaging features of the application hidden by default. So I thought I would write a post on how to enable them for those that would like to use CFBuilder for developing AIR applications. [More]

Using Asymmetric Cryptography in your ColdFusion Application - Security Series #16.10

Mon, 19 Jul 2010 05:03:00 -0500

A reader emailed me and asked:

I have a question re asymmetric encryption and the best way to achieve it.... I need to encrypt a CreditCard number on one server and store the encrypted string in a db and then 5 minutes later another server takes the card number off that DB and then needs to decrypt it. Any suggestions gratefully received :)

After an e-mail exchange we determined that we were NOT just talking about using SSL between ColdFusion and the DB and we determined that using a symmetric algorithm would not be acceptable to the credit card service. So it seems that this user really did need asymmetric encryption in his application. [More]

My 10 ideas to improve security in ColdFusion 10 (Link)

Mon, 12 Jul 2010 10:00:00 -0500

A few weeks ago my buddy Pete Freitag posted his ideas for improving security for CF10 (link) (or whatever they call the next version of ColdFusion). I thought it would be a good idea to post my own ideas. It's not that I disagree with any of Pete's ideas, I think they are great, I just thought a few more might be good, and I think some of my priorities might be different. [More]

New Job and more

Mon, 12 Jul 2010 08:13:00 -0500

Some of you may have noticed I have been quiet on my blog this summer, but I assure you, it is only temporary. I have been busy with grad school, family, instituting a lifestyle change to allow me to get healthy, and finding a new job. [More]

Cryptography Part 4 - Transposition Ciphers - Security Series #16.3

Tue, 08 Jun 2010 08:33:00 -0500

In my last few posts we talked a lot about substitution ciphers, but I hinted at transposition ciphers and promised to follow up with a post, so here it is.

Transposition Ciphers

In a substitution cipher the characters in the message maintain their original position but are replaced (substituted) with another character. With transposition ciphers the position of the characters in the message actually change in their relation to other characters. [More]

My review of NCDevCon 2010

Tue, 25 May 2010 12:37:00 -0500

This last weekend I attended, and spoke at, NCDevCon 2010 in Raleigh, NC. As expected, NCDevCon was a great conference put on by an amazing crew of dedicated volunteers.

Content

The content of this conference was very different than last year's CFinNC. Personally, I think the content this year appealed to a much wider audience. Last year's conference was clearly more focused on ColdFusion, CFML and Flex. This year, the focus seems to be more on Web Development, RIA's, and more general topics, yet with hands-on sessions that promoted the education of non-CF and Flex people on those technologies. I thought it was a great plan. [More]

On my way to NCDevCon

Fri, 21 May 2010 07:30:00 -0500

Right now I am on my way to NCDevCon (Yay for free inflight internet!!). If you are going to be at the conference this weekend, please do not hesitate to introduce yourself. One of the main reasons I go to conferences is to meet others. On Saturday I will be speaking about Security in Adobe AIR applications. I will point out that this session is targeted toward experienced AIR developers (either Flex or HTML JS). Anyway, I am looking forward to the conference. Last year's CFinNC was amazing, and I am positive that this year will be just as good.

Cryptography Part 3 - Frequency and Pattern Analysis - Security Series #16.2

Mon, 17 May 2010 07:50:00 -0500

In my first entry in this series I challenged you to do a little bit of cryptanalysis. This was, hopefully, a fun exercise to get you thinking about cryptography works and how it can be easily broken if it is not implemented properly. Of course the examples I am using in this series are extremely simple and I hope that no one would consider using any of them in production code. The point of showing you these things is partly for fun and partly to get you thinking about how cryptanalysts work on cracking more complicated algorithms using crazy mathematics and powerful computers. [More]

Cryptography Part 2 - Modular Mathematics - Security Series #16.1

Tue, 04 May 2010 10:22:00 -0500

OK, first, let's get this out of the way. I am not a math guy. Not even close. I enjoyed "Math for the Liberal Arts Major" back in my community college days, but I never even completed college algebra (though it is on my list of things to go back and do). So I am about to explain some math, but there is a GOOD chance that I am going to butcher this. If so, please correct me. Now with my disclaimer out of the way, I can say, "MATH IS COOL"! I really do enjoy the little bit of math that I know and while researching cryptography, I came across a little more. In Cryptography: A very short Introduction I was introduced to modular arithmetic. [More]

Cryptography Part 1 - Getting Started - Security Series #16

Tue, 27 Apr 2010 10:20:00 -0500

Wow, 20+ days since my last post. :( It has been a busy few weeks getting ready for cf.Objective() 2010, and I have been slack in my blogging. But no more! Back to it. Today I am going to continue my security series with a discussion of cryptography. This is a HUGE subject about which I am no expert, but I am learning and, as always, I feel the need to share this knowledge. Recently I started graduate school and my first class required a research paper. I chose to do an "Introduction to Cryptography". I also turned it into a presentation for cf.Objective(). Now I am going to continue that and incorporate it into my security series. Repetition makes it stick, right? So let's get started. And be sure to stick with me, cause somewhere in this post, I will have a contest. [More]

cf.Objective() preview presentations tomorrow night at Twin Cities CFUG

Tue, 06 Apr 2010 11:56:00 -0500

Tomorrow night at the Twin Cities CFUG meeting, Kurt Wiersma and I will each be presenting one of our cf.Objective() presentations. I think we each have three presentations to give at cf.O(). This is your opportunity to see two of the six early (or at all if you are not going to the conference for some bizarre reason). :) [More]

Developing Secure Facebook Applications Guide at OWASP

Sun, 28 Mar 2010 22:07:00 -0500

The Open Web Application Security Project (OWASP) has provided us with another great resource to help secure our web applications. A guide to creating secure applications on the Facebook platform has been released. [More]