Archive for October, 2008

Oct 23

Java 6 Update 10: No Longer Just for Developers

Developer's Cave, Island Forge neb No Comments »
Sun has released Java 6 Update 10, with the primary goal of improving end-user experience. Java is a wonderful programming language and runtime platform for developing many types of applications. Unfortunately, running a Java application can be a stumbling block for end users, which, in my opinion, has been holding Java back from reaching its full potential. This update promises many welcome improvements to the platform.
Attention Alpha Playtesters: I'll be testing the new Java version soon, with the goal of officially updating the game's base Java requirements to this version. Playtesters are encouraged to try the new update and report any issues/improvements.
In the rest of this article, I give my two cents on Sun's approach to Java thus far, and examine a couple improvements I've been eagerly anticipating. Read the rest of this entry »
Oct 16

MMORPG Security: Secret Chat Exploits

Developer's Cave neb 6 Comments »
Forgive the somewhat sensationalized title. This article does not describe any actual attacks on MMORPG chat systems (e.g., no World of Warcraft exploits). Nonetheless, there is good reason to believe that undisclosed chat exploits exist. This article explores the potential for exploiting MMORPG chat engines, based on related security vulnerabilities that are known to exist, which occur due to common software development practices. Anyone with experience in this matter is encouraged to comment, as there is a lack of community discussion on this subject. Read the rest of this entry »
Oct 09

Login Security: Password Hashing Techniques

Developer's Cave neb 1 Comment »
In support of Cyber Security Awareness Month, this article is written as a tutorial on basic login security, including techniques to defend against potential vulnerabilities. I encourage anyone with a software security background to comment on this article. Although I have some years of software security experience, peer review is essential for building secure systems.
TIP: Any and all security techniques (including these) should be considered experimental until thoroughly reviewed by the security community.
Read the rest of this entry »
Oct 03

Static: The Dark Side of Design

Developer's Cave neb 3 Comments »
Students of software must be taught early the benefits of object oriented design, lest they succumb to the dark side of static programming. When designing a software component, the temptation can be to write globally accessible public static methods in lieu of instantiable objects. Even experienced developers must remain diligent to avoid being turned to this quicker, more seductive, approach. Read the rest of this entry »