InfoQ

InfoQ

Topic/Tag specific view

Security Content on InfoQ


Latest featured content about Security

Architecting Visa for Massive Scale and Continuous Innovation

Topics
Security,
Java,
Ruby on Rails,
Ruby,
Spring Integration,
Spring Batch

John Davies examines Visa’s architecture and shows how major enterprises have architected very complex integrations incorporating Hadoop, memcached, Ruby on Rails, and many others to deliver innovative technology solutions. John explains how the platform architecture and technologies -- integrated and invented -- must be reliable and able to massively scale.

News about Security

Silverlight 5 Security: Designed for the Intranet

Topics
Silverlight,
Security,
.NET

Silverlight was originally seen as a Flash killer, but Flash itself is being replaced by HTML5. It was also seen as a way of delivering cross-platform applications, but iOS made that a non-starter as well. Surprisingly it is thriving in areas that were supposed to be the domain of WPF such as internal business applications and Silverlight 5’s updated security model reflects this.

Spring Security 3.1: Multiple http, Stateless, Debug, Crypto, HttpOnly, Custom form-login Params

Topics
Security,
Java

SpringSource has released Spring Security 3.1.0. New features include multiple http elements, stateless option, debug element, Crypto module, HttpOnly, secure cookies, delete cookies on logout, CAS tickets, JAAS configuration, authentication-manager-ref, request-matcher-ref, authentication-details-source-ref, form-login username-parameter and password-parameter, and more.

Articles about Security

Software Engineering Meets Services and Cloud Computing

Topics
Security,
Cloud Computing,
SOA

In this IEEE article, authors Stephen Yau and Ho An talk about application development using service-oriented architecture and cloud computing technologies. They also discuss application development challenges like security in a multi-tenant environment, quality-of-service monitoring, and mobile computing.

Regulatory Compliant Cloud Computing: Rethinking web application architectures for the cloud

Topics
Security,
Cloud Computing

Not all data is sensitive and hence an equal and balanced investment in securing all data categories is not justified. This article presents an architecture that leverages cloud-computing, cloud-storage and enterprise key-management Infrastructure(EKMI) to lower costs while complying to data-security regulations.

Presentations about Security

The Rise of OAuth

Topics
Security,
Java

Craig Walls talks about securing the modern web and how OAuth can help with that, showing how to secure and consume resources with OAuth.

Cloud Security or: How I Learned to Stop Worrying and Love the Cloud

Topics
Security,
Cloud Computing,
SaaS

While Cloud Computing offers increased business agility and reduced cost, many are worried about security: loss of control and lack of confidentiality. Presented by Alon Hazy and Jakob Illeborg Pagter, this talk looks at the threat landscape, then examines how to secure cloud solutions today and in the future.

Interviews about Security

Future of Web Application Security, with Tyler Close

Topics
Web 2.0,
Security,
Javascript,
Architecture

As web applications have evolved away from the old client-server model, so have the security threads. In this interview Tyler Close talks about common security challenges and how these are affected by the new HTML5 APIs and Ecmascript 5.

ECMAScript 5, Caja and Retrofitting Security, with Mark S. Miller

Topics
Security,
Javascript,
Architecture

Mark S. Miller talks about the security considerations of JavaScript and how they are dealt with in ECMAScript 5 and the Caja project. He also mentions issues that have to do with HTML5 and compares the security characteristics of other languages like Java and Scheme.