NEBytes

North East Bytes - Microsoft Technology Usergroup in the North East of England

Microsoft Web Platform Day coming to Newcastle

You might have spotted it already, but just in-case you haven't, Microsoft's development evangelist team are hitting the road with a set of events round the country and In April it's Newcastle (ok, ok technically Gateshead's) turn!

The event is a full day's worth of sessions with breaks for lunch and the all important networking.. The event is web focused with topics on Javascript, ASP.net, Hybrid apps and even a splash of DevOps.

If you haven't aready you can register here - http://mswebday.net/

It would be great to get as many folks along as possible to "proove" that it's worth Mirosoft coming back to visit us in our little section of the UK in future!

And as a great pre-event don't forget about April's NEBytes too!


NEBytes April 2016: .NET MVC Security with John Staveley

This month we happen to line up the day before the Microsoft Web Platform roadshow hits town (more info here - mswebday.net). As such we have our own webby topic ready for you and are delighted to have John Staveley coming up from Leeds who will be taking over both sessions with his master class on:

.NET MVC Website Security - John Staveley

The number and frequency of attacks on websites in the news is increasing steadily and effects can be devastating. However for each company that you hear about there are many more who cover up or are unaware of breaches on their sites. Thus what you hear about in the news represents just the tip of the iceburg. This primer session on security focusses on the major risks and the practical steps you can take now in your software development to protect an ASP.Net Mvc website from the major threats in the web today and will include code you can take away and implement in your own sites. Each type of attack will be introduced in a technology agnostic way, then highlighted with some case studies using major breaches as examples, then finally countermeasures which you can use will be proposed for each risk. The attacks I will be looking at are:

  • SQL Injection
  • Session hijacking
  • Password hacking
  • Weak account management
  • XSS
  • Insecure direct object references
  • Misconfiguration
  • Sensitive data exposure
  • Missing Function Level Access Control
  • CSRF
  • Unvalidated redirects and forwards
  • Form overposting
  • DDOS
  • Social Engineering

A sample code project is included as part of the talk which helps mitigate against all of these threats and more.

---

Eventbrite - NEBytes April 2016: .NET MVC Security with John Staveley

NEBytes March 2016: Applying Azure ML & Jon's magical rating game

Streamrollering into spring, come join us for March :)

Applying AML to improve customer experience - Derek Graham

The cloud is often presented as the cool new technology everyone should use as well as SaaS being the answer for businesses reluctant to purchase and service their own hardware. For a SaaS provider, balancing the cost of cloud computing against performance can be challenging when it's not clear of the amount of load to expect, how the system will be used or if use will change over time.

Machine Learning is just one of a series of new technologies and services that are available on Microsoft's Azure platform and offers new possibilities to answer this challenge. In this presentation we'll look at an application of AML, in combination with other Azure services, that can make predictions about customer behaviour and scale out to provide a better customer experience without breaking the bank.

Derek Graham

Derek has worked at almost every level of the software development food-chain over the last 20
plus years. He has experience in real-time motion control, ERP stock control and barcoding systems, software licensing, developer tooling and shrink-wrapped software.

He is a Principal Developer at Sage UK, helping to deliver cloud-based business solutions in .Net on Azure.

His main areas of interest are in using agile methods to help improve what we ship, XP, TDD, continuous and deliberate learning, visual thinking, design and, of course, code. He may also be hastening the coming of our robot overlords.


Properly Rated? - Jon Noble

Lets see about getting a bit of a discussion going... All will be revealed on the night!

---

See you all there!

Eventbrite - NEBytes March 2016: Applying Azure ML & Jon's magical rating game