InfoQ Homepage Security Content on InfoQ
-
Blockchain-Based Identity Management & Upcoming ICO
Armin Ebrahimi discusses how ShoCard uses the blockchain technology to address privacy concerns in identity management.
/presentations/shocard-blockchain-privacy-identity-management/en/mediumimage/Armbig-1533515750140.JPG)
-
Building a Cloud-Native Compliance Culture
CeeCee O'Connor, Chuck D'Antonio discuss building a compliance engine with Concourse, keeping their teams focused on their application code and minimizing the effort they put into compliance.
/presentations/compliance-concourse-boston-scientific/en/mediumimage/Cebig-1529894817493.JPG)
-
Cloud Foundry UAA as an Identity Gateway
Sree Tummidi discusses the capabilities of Cloud Foundry’s UAA which make it apt to be used as an identity gateway for both ingress and egress security patterns.
/presentations/cloud-foundry-uaa/en/mediumimage/Srebig-1529293383351.JPG)
-
Insecure Transit - Microservice Security
Sam Newman outlines some of the key challenges associated with microservice architectures with respect to security, and then looks at approaches to address these issues.
/presentations/microservices-arch-security/en/mediumimage/Sambig-1528247695081.JPG)
-
Liquidity Modeling in Real Estate Using Survival Analysis
Xinlu Huang and David Lundgren discuss hazard and survival modeling, metrics, and data censoring, describing how Opendoor uses these models to estimate holding times for homes and mitigate risk.
/presentations/liquidity-modeling-risk/en/mediumimage/Doibig-1527731396587.JPG)
-
Ensuring Platform Security with Windows Bosh Add-ons and Runtime-Config at Boeing
Presenters discuss implementing security for a Windows deployment on PCF with Bosh add-ons via Runtime Config.
/presentations/windows-bosh-pcf-security/en/mediumimage/treibig-1526226371884.JPG)
-
Attack Trees, Security Modeling for Agile Teams
Michael Brunton-Spall talks about Attack Trees, a new way of understanding how a system might be attacked and how to prioritize security measures to be implemented.
/presentations/security-modeling-agile-teams/en/mediumimage/Micbig-1526087338653.JPG)
-
Security Champions: Only You Can Prevent File Forgery
Marisa Fagan discusses how to become a Security Champion in five steps, what the benefits are, and what to do when there is no Security Champions program or even a Product Security program.
/presentations/security-champion-5-steps/en/mediumimage/Marbig-1525913128541.JPG)
-
EternalBlue: Exploit Analysis and beyond
Emma McCall talks about the EternalBlue exploit that was leaked in early 2017 which was then abused to great effect throughout the year.
/presentations/eternalblue/en/mediumimage/Embig-1525912877466.JPG)
-
Bigger, Faster and More Secure
Laura Bell talks about how security can look when it stops being about fear and starts being a tool for building systems of the future.
/presentations/security-future-systems/en/mediumimage/Laubig-1525912601160.JPG)
-
Encryption without Magic, Risk Management without Pain
Anastasiia Voitova talks about cryptography in a wider context: how it helps to narrow more significant risks to controlled attack surfaces, enables managing the risk efficiently & elegantly, and more
/presentations/encryption-risk-management/en/mediumimage/Anabig-1525911914329.JPG)
-
Healthy Agile Product Security
Molly Crowther discusses how the Pivotal CF teams are working on a secure development lifecycle, some pain points encountered, and best practices for shipping security features quickly.
/presentations/security-teams-cf-pivotal/en/mediumimage/Molbig-1525397522370.JPG)