Quantum-Safe Cryptography in .NET
Cryptographic algorithms hide behind the curtain of so much of the digital communication that supports our daily lives online. As quantum computers continue to advance, the likelihood increases of computers that can defeat all of our current cryptography algorithms, threatening to unravel the very fabric of our digital world. With this threat looming, I want […]
Scanning Uploaded Files for Malware in C#
With cyber threats multiplying daily, it can be overwhelming to try to stay on top of security in our software applications. When faced with the daunting task of writing code to mitigate the risk of malware, viruses, and other types of threats, many developers don’t know where to start. One critical skill of developers working […]
Selecting a Software Composition Analysis Tool
So, you have decided to take the plunge and implement a tool for Software Composition Analysis (SCA). This is a big step toward improving the security of your applications and the security posture of your organization as a whole. Congratulations! Or maybe you’ve never heard of SCA, but you’re curious what it is. A Software […]
Exploring What’s New in .NET 8
In the early days of the .NET Framework, releases were infrequent and timed with Windows releases. The shift to an open-source platform brought a welcome change. Now, we anticipate an annual .NET release tied to the .NET Conf event every November. Building on the foundation of .NET 7, this release introduces a host of new […]
How to Solve “Could not create SSL/TLS secure channel” Error in .NET 4.6.x
Could not create SSL/TLS secure channel Recently, a legacy ASP.NET Web API application that we support started logging an exception and also giving back a HTTP 500 response on some of its API endpoints. The exception, or at least an inner exception within it, was: System.Net.WebException: The request was aborted: Could not create SSL/TLS secure […]
Adding a New Android Permission in a Xamarin App
As you know, Android is always adding features in its new versions and now the Post Notifications permission has been introduced from Android 13. In this blog, we are going to explore how to request it in our Xamarin.Android projects. Sample Project 1. Let’s set Android 13.0 as the Target framework. Open your project settings […]
Securing Your Software Supply Chain
The Problem The principle of code reuse is a foundational axiom of software development. This best practice has manifested itself, in part, in the form of centralized package repositories like Nuget and NPM from which developers can access an entire Internet’s worth of libraries to supplement their code. But when using someone else’s code like […]
Software Security For Humans
How secure is your software? Pondering this question can provoke uncertainty (or even fear) depending on the experience level of your software team and the maturity of your control processes. However, this does not need to be the case for most software teams. Software security is not easy, but neither is it exclusively the domain […]
Calling APIs with OAuth2 Access Tokens – The Easy Way!
Scenario: Your API needs to call another REST API – or your Console App or Web Job needs to call some other REST API. You can acquire an access token to that API from an OAuth2 Security Token Service such as Duende Identity Server, Okta, Auth0 or Azure Active Directory. This blog shows you how […]
Solving “Could not create SSL/TLS secure channel” error in .NET 4.6.x
Could not create SSL/TLS secure channel Recently, a legacy ASP.NET Web API application that we support started logging an exception and also giving back a HTTP 500 response on some of its API endpoints. The exception, or at least an inner exception within it, was: System.Net.WebException: The request was aborted: Could not create SSL/TLS secure […]