[Owasp-leaders] Password Storage Cheat Sheet
dennis.groves at owasp.org
Tue Mar 12 17:03:39 UTC 2013
On 12 Mar 2013, at 16:52, Jim Manico wrote:
> After a fairly dramatic amount of work, debate and threat modeling,
> I'd like to announce that the Password Storage Cheat Sheet is now
> Thank you to John Steven for this most excellent publication.
> What strikes me about Johns' work on this cheat sheet is that he also
> published a very detailed threat model on password storage to back up
> his conjectures.
I am particularly impressed with the use of compartmentalisation, fault
tolerant design and defence in depth that this architecture utilises.
Something I very rarely see in security designs. The threat model is
very thorough, and I also love the rigour. This is particularly *great*
work. Cheers to John - completely awesome work!
[Dennis Groves](http://about.me/dennis.groves), MSc
[Email me](mailto:dennis.groves at owasp.org) or [schedule a
*This email is licensed under a [CC BY-ND
**Please do not send me Microsoft Office/Apple iWork documents.**
Send [OpenDocument](http://fsf.org/campaigns/opendocument/) instead!
Stand up for your freedom to install [free
> The idea that some lives matter less is the root of all that’s wrong
> with the world. -- Paul Farmer
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders