Novogeek - novogeek.com - NovoGeek.com - Krishna's weblog
General Information:
Latest News:
Analyzing the new social engineering spam on Facebook - lady with an axe 19 Jun 2013 | 10:19 am
Spammers are everywhere and are waiting desperately for stealing user information, mass advertisements etc. and Facebook is no exception. Until a couple of years back, there were a lot of spams floodi...
Third party content-The paradoxes of the web 30 May 2013 | 09:44 pm
When the World Wide Web started, it was just a bunch of static HTML pages which are interconnected by hyperlinks. More importantly, each website had content which was loaded from its own server (techn...
Microsoft MVP award - One more time 1 Apr 2013 | 12:02 pm
Elated and excited! This is the fourth consecutive year that I have received Microsoft Most Valuable Professional (MVP) award. This time too, I got it in "Internet Explorer" category. Here are some o...
A few things beyond the scope of Content Security Policy 30 Mar 2013 | 11:02 pm
As a follow up of my posts “The uncontrollable web platform” and “The promises of CSP to secure the web”, in this post, I would like to highlight some of the things which are beyond the scope of Conte...
Talks at Techny 2013 and MUGH Feb meet 27 Feb 2013 | 07:55 pm
Glad to say that I had the opportunity to interact with a large student gathering at Warangal. The event was Techny 2013 and there were about 600+ energetic and enthusiastic students. I have presented...
The promises of Content Security Policy to secure the web 25 Jan 2013 | 11:08 am
In my previous post, “The uncontrollable web platform”, I have discussed at a high level the core security policy current browsers have (i.e., Same Origin Policy, SOP) and why it is insufficient to se...
The uncontrollable web platform and Browser security 25 Dec 2012 | 05:34 am
On the web, every other day we see a new JavaScript library, a new framework, a browser hack or an innovative way of using/bypassing some feature for building something good. Most of us are so deeply ...
NULL Hyderabad Meet-November 2012 10 Nov 2012 | 07:44 am
It has been a nice honor to organize NULL Hyderabad Chapter's monthly meet for November 2012 (EventBrite site). The event had good turnaround (imagine ~50 tickets being sold online in about 1.5 hours)...
Securing the web with declarative HTTP security policies 31 Oct 2012 | 12:35 am
Whether you have noticed or not, over the past couple of years, there has been a new security drive happening on the web – the rise of declarative security policies. i.e., declaring security policies ...
What you know about AJAX, is not the same in HTML5 CORS 29 Sep 2012 | 07:53 pm
“AJAX is for asynchronous calls within same origin whereas HTML5 CORS is for asynchronous calls across origins”. This is a popular comparison of AJAX vs CORS which many web developers do, but there is...