Speaking

Notes from Data Science with Azure Talk @ TAP

I recently spoke at the Tampa Analytics Group, a Microsoft recognized Data Science group ran by Joe Blankenshi­p on the topic of Data Science with Azure. The talk focused on Azure offerings, with a demo on how to write a map-redcuce job in Azure using C#. Following are the slides.

 

TAP Standard Meeting

Monday, Apr 11, 2016, 5:30 PM

TEKsystems
4301 W Boy Scout Blvd #590 Tampa, FL

15 Data Scientists Went

Tampa Analytics Professionals!The intent of this meeting is to bring together people in the Tampa Bay and surrounding areas involved or interested in data science or related professions.This week we have Dr. Adnan Masood talking to us about:Hadoop in the Azure Cloud - A Hands On GuideTEKSystems has graciously provided the space as well as food ...

Check out this Meetup →

Share

Machine Learning for Big Data and Text Processing - Short Programs Testimonials

Adnan Masood MIT

Share

Notes from my LA C# User Group Talk

I spoke to LA C# User group last night in Pasadena on the topic of Web Application Security with OWASP.

The slide deck of my talk can be downloaded from here. LA C# OWASP Presentation

Links from the talk follow.

Share

WCF vs. ASP.NET Web API – An Architect’s Primer - Speaking to Southern California .NET Architecture Users Group

I will be speaking to the next Southern California .NET Architecture Users Group - IASA chapter meeting will be Thursday February 21, 2013 at Rancho Santiago Community College District, 2323 N. Broadway, Santa Ana.

Meeting starts at 7:00 pm, pizza and networking 6:30 pm. Abstract follows.

WCF vs. ASP.NET Web API – An Architect’s Primer

ASP.NET Web API is a framework that makes it easy to build HTTP services that reach a broad range of clients, including browsers and mobile devices. The new ASP.NET Web API is a continuation of the previous WCF Web API projection. WCF was originally created to enable SOAP-based services and other related bindings. However, for simpler RESTful or RPCish services (think clients like jQuery) ASP.NET Web API is a good choice.

In this meeting we discuss what do you need to understand as an architect to implement your service oriented architecture using WCF or ASP.NET web API. With code samples, we will elaborate on WCF Web API’s transition to ASP.NET Web API and respective constructs such as Service vs. Web API controller, Operation vs. Action, URI templates vs ASP.NET Routing, Message handlers, Formatters and Operation handlers vs Filters, model binders. WebApi offers support for modern HTTP programming model with full support for ASP.NET Routing, content negotiation and custom formatters, model binding and validation, filters, query composition, is easy to unit test and offers improved Inversion of Control (IoC) via DependencyResolver.

You will walk away with a sample set of services that run on Silverlight, Windows Forms, WPF, Windows Phone and ASP.NET.

 

Downloads: Slides and Source

Share

SecureIT 2013 - OWASP Web Services Security- Securing Your Service Oriented Architecture

I am confirmed to speak to SecureIT 2013 Conference with OWASP Los Angeles chapter leader, Tin Zaw. Following is the abstract from my talk.

Abstract: Any Service-Oriented Architecture (SOA) needs to support security features that provide auditing, authentication, authorization, confidentiality, and integrity for the messages exchanged between the client and the service. Microsoft Windows Communication Foundation (WCF) provides these security features by default for any application that is built on top of the WCF framework. In this session the presenters will discuss the WCF security features related to auditing and logging, authentication, authorization, confidentiality, and integrity.

This talk is focused on WCF security features with code demonstration to use behaviors and bindings to configure security for your WCF service. Bindings and behaviors allow you to configure transfer security, authentication, authorization, impersonation, and delegation as well as auditing and logging. This presentation will help you understand basic security-related concepts in WCF, what bindings and behaviors are and how they are used in WCF, authorization and roles in the context of WCF, impersonation and delegation in the context of WCF and what options are available for auditing in WCF.

Targeted towards solution architects and developers, this talk will provide you architectural guidance regarding authentication, authorization, and communication design for your WCF services, solution patterns for common distributed application scenarios using WCF and principles, patterns, and practices for improving key security aspects in services.

 

Presenters

Adnan Masood, MS. MCSD.

Senior Software Architect at Greendot Corp., Chapter Leader and President Pasadena.NET Developers Group

Tin Zaw, CISSP, CSSLP

Chapter Leader and President OWSAP- LA

Share

Refactoring Code to a S.O.L.I.D. Foundation - Speaking @ IE.NET UG

Tonight I will be speaking to Inland Empire .NET users group talking about "Refactoring Code to a S.O.L.I.D. Foundation". Abstract and meeting info follows.

Abstract: SOLID is a mnemonic acronym coined by Robert C. Martin (aka Uncle Bob) referring to a collection of design principles of object-oriented programming and design. By using these principles, developers are much more likely to create a system that more maintainable and extensible. SOLID can be used to remove code smells by refactoring. In this session, you will learn about the following SOLID principles with code examples demonstrating the corresponding refactoring.

S - Single Responsibility Principle - An Object should have only one reason to change.
O - Open/Closed Principle - A software entity(module, library, routine) should be closed to any modification but be open to extension
L - Liskov Substitution Principle - Derived classes should be substitutable for the base classes
I - Interface Segregation Principle - Having more fine grained interfaces over fat interfaces
D - Dependency Inversion Principle - Depending on abstractions, not concrete implementations.

Downloads: SOLID Presentation - Inland Empire UG, LosTechies ebook and SOLID-Code Sample

For RSVP and directions, please click below.

SOLId

Share

WCF Security - Speaking @ OWASP Los Angeles November Monthly Meeting

I had a great time last night speaking to OWASP Los Angeles November Monthly Meeting on the topic of WCF Security – Securing your Service Oriented Architecture. The abstract of the talk, presentation slides and code follows.

Abstract: Any Service-Oriented Architecture (SOA) needs to support security features that provide auditing, authentication, authorization, confidentiality, and integrity for the messages exchanged between the client and the service. Microsoft Windows Communication Foundation (WCF) provides these security features by default for any application that is built on top of the WCF framework. In this session, Adnan Masood will discuss the WCF security features related to auditing and logging, authentication, authorization, confidentiality, and integrity.

 

 

This talk is focused on WCF security features with code demonstration to use behaviors and bindings to configure security for your WCF service. Bindings and behaviors allow you to configure transfer security, authentication, authorization, impersonation, and delegation as well as auditing and logging. This presentation will help you understand basic security-related concepts in WCF, what bindings and behaviors are and how they are used in WCF, authorization and roles in the context of WCF, impersonation and delegation in the context of WCF and what options are available for auditing in WCF.

 

 

Targeted towards solution architects and developers, this talk will provide you architectural guidance regarding authentication, authorization, and communication design for your WCF services, solution patterns for common distributed application scenarios using WCF and principles, patterns, and practices for improving key security aspects in services.

 

Share

LADOTNET Sept Event: Practical Web Application Security with ASP.NET and MVC

Tonight I will be speaking at the Los Angeles.NET User Group on Practical Web application Security with ASP.NET/MVC. Following is the abstract.

Abstract:

This session is a hands-on introduction to the web application security threats using the OWASP (Open Web Application Security Project) top 10 list of potential security flaws. The OWASP Top Ten provides a powerful awareness list for web application security and represents a broad consensus about what the most critical web application security flaws are.

Focusing on Microsoft platform with examples in ASP.NETand ASP.NETMVC, we will go over some of the common exploits and techniques for writing secure code in the light of OWASP top 10. In this code centric talk, we will discuss built in security features ofASP.NET and MVC such as cross site request forgery token and secure cookies and how to leverage them to write secure code. The OWASP Top 10 Web Application Security Risks for 2010 which will be covered in this presentation include Injection flaws, Cross-Site Scripting (XSS), Broken Authentication and Session Management, Insecure Direct Object References, Cross-Site Request Forgery (CSRF),Security Misconfiguration, Insecure Cryptographic Storage, Failure to Restrict URL Access, Insufficient Transport Layer Protection and Unvalidated Redirects and Forwards.

RSVP Here.

Share

Notes from LaTeX / LyX 101 –A Hands-on BYOL Workshop

I thoroughly enjoyed attending the Summer Dissertation Conference @ SCIS NSU and presenting the LaTeX / LyX 101 – A Hands-on BYOL Workshop  (Rm. 3032/3034) on day 2. I would like to thank the attendees who participated in the workshop; Hopefully I was able to transfer some of my enthusiasm about LaTeX to you during the session :).

Special thanks to Dr. Seagull for arranging this event, Dr. Sun for attending the workshop and my advisor Dr. Li for his support.

As promised, here are the links to TalkNotesLaTeX101 tutorial by John Gardner and Alex Yu a, helloworld.tex and nsu.bib used during the demo. Other links from the workshop follows.

LaTeX Learning Curve Graphic - Courtesy Marko Pinteric

 

My earlier post on Dissertation 2.0 and LaTeX and a Strategy for Overcoming the Learning Curve are relevant readings.

Please feel free to send any questions or comments @ adnan at nova dot edu.

Share

Notes from my SF.NET Developers user group talk

I spoke to The San Francisco .NET Developers User Group last week on the topic of Practical Web Application Security with ASP.NET / MVC. Following are the some of the links from my talk. For additional links, please see my earlier talk Resources – talk @ 10th Annual SecureIT conference

  • Home/MVC/Overview/Chapter 7. Security
  • Security Extensibility in ASP.NET 4 (This whitepaper covers the major ways in which security features in ASP.NET 4 can be customized, including: Encryption options and functionality in the <machineKey> element, interoperability of ASP.NET 4 forms authentication tickets with ASP.NET 2.0, configuration options to relax automatic security checks on inbound URLs, pluggable request validation, and pluggable encoding for HTML elements, HTML attributes, HTTP headers, and URL)

The code from the talk can be downloaded from here. Also, Jerry Hoff's ASP.NET port of WebGoat is available here. jerryhoff / WebGoat.NET

 

Share
Go to Top