InfoQ Homepage Security Content on InfoQ
-
/articles/book-review-testing-digital-age/en/smallimage/testing-in-the-digital-age-logo-1531869927670.jpg)
Q&A on the Book Testing in the Digital Age
The Book Testing in the Digital Age by Tom van de Ven, Rik Marselis, and Humayun Shaukat, explains the impact that developments like robotics, artificial intelligence, internet of things, and big data are having in testing. It explores the challenges and possibilities that the digital age brings us when it comes to testing software systems.
-
/articles/istio-future-service-mesh/en/smallimage/Istio-Future-of-Service-Meshes-1529065924373.jpeg)
Istio and the Future of Service Meshes
A service mesh provides a transparent and language-independent way to flexibly and easily automate networking, security, and observation functions. This article examines the past, present and future of the Istio service mesh. The near-term goal is to launch Istio to 1.0, when the key features will all be in beta, including support for Hybrid environments.
-
/articles/book-review-accelerate/en/smallimage/Accelerate-the-science-of-lean-software-1528404161593.jpg)
Q&A on the Book Accelerate: Building and Scaling High Performance Technology Organizations
The book Accelerate: Building and Scaling High Performance Technology Organizations by Nicole Forsgren, Jez Humble, and Gene Kim, explores the factors that impact software delivery performance and describes capabilities and practices that help to achieve higher levels of throughput, stability, and quality.
-
/articles/vulnerability-open-source/en/smallimage/logo-1527429788430.jpeg)
How to Deal with Open Source Vulnerabilities
Despite the shockwaves following the Equifax hack in September 2017, the industry still has a long way to go in protecting their products. A key area to focus on is the open source components that comprise 60-80% of the code base in modern applications. Learn how to detect vulnerable open source components and keep your products secure.
-
/articles/mastering-blockchain-review/en/smallimage/cover-blockchain-1522668372627.jpg)
Mastering Blockchain: Book Review and Author Q&A
Blockchain was invented in 2008 for Bitcoin to solve the main issue with digital currencies, i.e., the possibility that a token be spent more than once by duplicating it. Packt Publishing Mastering Blockchain by Imran Bashir aims to provide a comprehensive introduction to Blockchain, a technology that is claimed to be able to revolutionise our society and impact every industry.
-
/articles/gdpr-for-operations/en/smallimage/logo-gdpr-1520521590016.jpeg)
GDPR for Operations
With GDPR, taking care of personal data is an organisation-wide responsibility, but in the operations we can provide a lot of supporting tools to help deal with the multiple facets of this problem.
-
/articles/serverless-security/en/smallimage/logo-serverless-1519232528150.jpeg)
Serverless Security: What's Left to Protect?
This article aims to provide a broad understanding of security in the Serverless world. We'll consider the ways in which Serverless improves security, the areas where it changes security, and the security concerns it hurts.
-
/articles/gdpr-for-software-devs/en/smallimage/logo-gdpr-1512733845052.jpeg)
What Should Software Engineers Know about GDPR?
EU General Data Protection Regulation (GDPR) is moving out of the transition period next summer to become enforceable GDPR strongly emphasizes risk-based thinking; you take every step to mitigate privacy risks until the risks become something you can tolerate. As a software developer, this will affect you. This is what you need to know.
-
/articles/cryptocurrency-online-games/en/smallimage/logo-mobile-1511905955433.jpeg)
Cryptocurrency and Online Multiplayer Games
The era of cryptocurrency opens new possibilities for game publishers and developers. However, it is not yet a fully-developed market and there are many things that should be taken into account before entering it. This article reviews the main pros and cons of entering this new and highly volatile field.
-
/articles/user-anonymity-twitter/en/smallimage/logo-ieee-1507791722409.jpg)
User Anonymity on Twitter
This article explores how it is possible to measure how many Twitter users adopted anonymous pseudonyms, the correlation between content sensitivity and user anonymity, and whether it would be possible to build automated classifiers that would detect sensitive Twitter accounts.
-
/articles/building-continuous-security-containers-deployment/en/smallimage/logo-small-1506666541458.jpg)
A 4-Step Guide to Building Continuous Security into Container Deployment
Containers face security risks at every stage, from building to shipping to the run-time production phases. Securing them requires a layered strategy throughout the stack and the deployment process.
-
/articles/cloud-data-auditing/en/smallimage/logo-ieee.jpeg)
Cloud Data Auditing Techniques with a Focus on Privacy and Security
The authors provide a guide to the current literature regarding comprehensive auditing methodologies. They not only identify and categorize the different approaches to cloud data integrity and privacy but also compare and analyze their relative merits. For example, their research lists the strengths and weaknesses of earlier work on cloud auditing, which allows researchers to design new methods.