Daniel SzpisjakinEmarsys CraftlabInside a crypto black-boxBuilding AES from the ground up.Jan 30, 2019Jan 30, 2019
Daniel SzpisjakinEmarsys CraftlabHow to become a modern magician? - productivity tips for devs on macOSI always loved magic. I was never a believer, but I fell in love with the concept of humans conjuring unbelievable realities by saying…Aug 9, 20188Aug 9, 20188
Daniel SzpisjakinEmarsys CraftlabThe ends of encryptionToday’s security headlines feature data breaches, backdoor debates, and privacy concerns. Some companies sell information about their…Jul 19, 20181Jul 19, 20181
Daniel SzpisjakEnd of cross-postingI will not cross-post future content to Medium. Everything I write is available on my blog at https://www.securitydrops.comNov 14, 2017Nov 14, 2017
Daniel SzpisjakThe Web API Authentication guide, Basic AuthThis post is part of a multi-part series. It builds on the first post, where I describe the framework we will use to evaluate…Oct 13, 2017Oct 13, 2017
Daniel SzpisjakThe Web API Authentication guide, part I. The introAs a developer, you will most likely get in the situation, where you have to decide how to authenticate your API. How would you deal with…Sep 27, 2017Sep 27, 2017
Daniel SzpisjakData Integrity PrimerData integrity is rarely talked about, even though it comprises the basis of many data flows a modern web application has to deal with…Jul 26, 2017Jul 26, 2017
Daniel SzpisjakAbout trusting data“Never trust user input” — say the wise. Sound advice, although it raises more questions than it answers. First of all, what does it mean…Jun 26, 2017Jun 26, 2017
Daniel SzpisjakinEmarsys CraftlabSecurity for Software EngineersSolid security knowledge among developers is scarce these days, simply because it is not as spectacular and sexy as a new framework or a…May 30, 2017May 30, 2017
Daniel SzpisjakSession managementSession management is an integral part of today’s web applications. You receive limited support from the HTTP protocol and have to handle…May 29, 2017May 29, 2017