In support of Cyber Security Awareness Month, this article is written as a tutorial on basic login security, including techniques to defend against potential vulnerabilities. I encourage anyone with a software security background to comment on this article. Although I have some years of software security experience, peer review is essential for building secure systems.

TIP: Any and all security techniques (including these) should be considered experimental until thoroughly reviewed by the security community.

Read the rest of this entry »