InfoQ Homepage Security Content on InfoQ
-
Ensuring Platform Security with Windows Bosh Add-ons and Runtime-Config at Boeing
Presenters discuss implementing security for a Windows deployment on PCF with Bosh add-ons via Runtime Config.
/presentations/windows-bosh-pcf-security/en/mediumimage/treibig-1526226371884.JPG)
-
Attack Trees, Security Modeling for Agile Teams
Michael Brunton-Spall talks about Attack Trees, a new way of understanding how a system might be attacked and how to prioritize security measures to be implemented.
/presentations/security-modeling-agile-teams/en/mediumimage/Micbig-1526087338653.JPG)
-
Security Champions: Only You Can Prevent File Forgery
Marisa Fagan discusses how to become a Security Champion in five steps, what the benefits are, and what to do when there is no Security Champions program or even a Product Security program.
/presentations/security-champion-5-steps/en/mediumimage/Marbig-1525913128541.JPG)
-
EternalBlue: Exploit Analysis and beyond
Emma McCall talks about the EternalBlue exploit that was leaked in early 2017 which was then abused to great effect throughout the year.
/presentations/eternalblue/en/mediumimage/Embig-1525912877466.JPG)
-
Bigger, Faster and More Secure
Laura Bell talks about how security can look when it stops being about fear and starts being a tool for building systems of the future.
/presentations/security-future-systems/en/mediumimage/Laubig-1525912601160.JPG)
-
Encryption without Magic, Risk Management without Pain
Anastasiia Voitova talks about cryptography in a wider context: how it helps to narrow more significant risks to controlled attack surfaces, enables managing the risk efficiently & elegantly, and more
/presentations/encryption-risk-management/en/mediumimage/Anabig-1525911914329.JPG)
-
Healthy Agile Product Security
Molly Crowther discusses how the Pivotal CF teams are working on a secure development lifecycle, some pain points encountered, and best practices for shipping security features quickly.
/presentations/security-teams-cf-pivotal/en/mediumimage/Molbig-1525397522370.JPG)
-
Microservices Panel
The panelists discuss things like security, service meshes and how to troubleshoot distributed systems, looking forward to see what the next 12 months may hold for microservice architectures.
/presentations/microservices-panel-security-mesh/en/mediumimage/Panbig-1525057039220.jpg)
-
AI & Security: Lessons and Challenges
Dawn Song presents results in the area of secure deep learning and how DL systems could be fooled and what can be done, how AI and DL can enable better security, and how security can enable better AI.
/presentations/ai-security-challenges/en/mediumimage/Dabig-1524703097261.JPG)
-
Securing Serverless – by Breaking in
Guy Podjarny breaks into a vulnerable serverless application and exploits multiple weaknesses, helping understand the mistakes that can be made, their implications, and how to avoid them.
/presentations/serverless-security-2018/en/mediumimage/Guybig-1524273718388.JPG)
-
Introduction to Compliance Driven Development (CDD) and Security Centric System Design
Dmitry Didovicher introduces CDD and discusses how they used Pivotal and Compliance Automation technologies to receive a certification to run PostgreSQL-As-A-Service.
/presentations/compliance-driven-development/en/mediumimage/Dmibig-1523848191467.JPG)
-
How Performance Optimizations Shatter Security Boundaries
Moritz Lipp explains how the Meltdown and Spectre vulnerabilities exploit hardware optimizations to read otherwise inaccessible data processed on the computer.
/presentations/spectre-meltdown-security/en/mediumimage/Morbig-1523844336106.JPG)