Software security is a big deal (167 million LinkedIn user account details are currently for sale on the dark web). Most applications fail to secure user data sufficiently, leaving them vulnerable to attacks resulting in dire consequences.
To combat this issue, we are excited to announce the release of our complete 2016 Guide to User Data Security. The guide compiles everything our development team knows about server and application security and delivers step-by-step code to help you secure your user data. It covers key concepts such as server architecture, firewalling, intrusion detection, password security, two-factor authentication, social hacks, SQL injections and more.
Read the full guide online here: /guides/2016-guide-to-user-data-security
Download the guide here: /resources/2016-guide-to-user-data-security.pdf
Check out our Github project created around this guide. This project contains a set of scripts you can execute from your local computer to secure a remote server.
Github project: https://github.com/inversoft/2016-security-scripts
Comments? Feel free to discuss our Guide to User Data Security on HackerNews: https://news.ycombinator.com/item?id=12046028
Aside: Security is Easy with Passport
Passport stores all user data in a centralized location with built-in industry leading security.
- Passport uses a strong encryption algorithm to store user passwords. Even if the user database is compromised, it will still be nearly impossible to reverse engineer a user password from the stored hash.
- Enable two-factor authentication with Passport. Two-factor authentication enhances user login security by requiring something the user knows (password) with something the user possesses. Using two-factor authentication allows a user account to remain secure even if their password has been compromised.
- When you install Passport you can secure your servers according to your information security protocols (Passport is available to host on your servers or we will host it for you in our private cloud).