Howdy,
Just thought I'd go through the quick process of introducing myself. I'm
Gabriel Lawrence, I run a little security company called Butterfly
Security. We have created software that wraps around a deployed web
application and attempts to protect it from attacks. Imagine a cross
between a firewall and an IDS focused soley on web applications.
(<PLUG>We ship 1.0 of our product this week, come and buy a copy ;-)
www.butterflysecurity.com</PLUG>)
My interest in this project lies with the idea of giving web application
developers better tools to make secure applications. From my experience
at Butterfly and in the past developing secure web applications I've
seen how difficult it is to make a good secure application - but also
how many of the common mistakes are kind of simple stuff... Just so much
to remember that people forget.
In the past I've developed secure web applications for an ASP, I worked
at Sun where I developed a web browser (it never saw the light of day,
but I also contributed to the final release of HotJava) And I worked in
their enterprise consulting organization developing java/web
applications for companies such as CSX, BofA, Money Store, PeopleSoft,
FedEx, Simon&Schuster and so on...
I'm happy and comfortable working at any level from pure implementation,
to technical leadership and project management. Because of my time
constraints with Butterfly in this project I'm happy to take a more
organizational role.
-gabe
|
