InfoQ Homepage Security Content on InfoQ
-
Bigger, Faster and More Secure
Laura Bell talks about how security can look when it stops being about fear and starts being a tool for building systems of the future.
/presentations/security-future-systems/en/mediumimage/Laubig-1525912601160.JPG)
-
Encryption without Magic, Risk Management without Pain
Anastasiia Voitova talks about cryptography in a wider context: how it helps to narrow more significant risks to controlled attack surfaces, enables managing the risk efficiently & elegantly, and more
/presentations/encryption-risk-management/en/mediumimage/Anabig-1525911914329.JPG)
-
Healthy Agile Product Security
Molly Crowther discusses how the Pivotal CF teams are working on a secure development lifecycle, some pain points encountered, and best practices for shipping security features quickly.
/presentations/security-teams-cf-pivotal/en/mediumimage/Molbig-1525397522370.JPG)
-
Microservices Panel
The panelists discuss things like security, service meshes and how to troubleshoot distributed systems, looking forward to see what the next 12 months may hold for microservice architectures.
/presentations/microservices-panel-security-mesh/en/mediumimage/Panbig-1525057039220.jpg)
-
AI & Security: Lessons and Challenges
Dawn Song presents results in the area of secure deep learning and how DL systems could be fooled and what can be done, how AI and DL can enable better security, and how security can enable better AI.
/presentations/ai-security-challenges/en/mediumimage/Dabig-1524703097261.JPG)
-
Securing Serverless – by Breaking in
Guy Podjarny breaks into a vulnerable serverless application and exploits multiple weaknesses, helping understand the mistakes that can be made, their implications, and how to avoid them.
/presentations/serverless-security-2018/en/mediumimage/Guybig-1524273718388.JPG)
-
Introduction to Compliance Driven Development (CDD) and Security Centric System Design
Dmitry Didovicher introduces CDD and discusses how they used Pivotal and Compliance Automation technologies to receive a certification to run PostgreSQL-As-A-Service.
/presentations/compliance-driven-development/en/mediumimage/Dmibig-1523848191467.JPG)
-
How Performance Optimizations Shatter Security Boundaries
Moritz Lipp explains how the Meltdown and Spectre vulnerabilities exploit hardware optimizations to read otherwise inaccessible data processed on the computer.
/presentations/spectre-meltdown-security/en/mediumimage/Morbig-1523844336106.JPG)
-
Abstractions to Help Developers Write Good Crypto
Isaac Potoczny-Jones discusses the impact of programming abstractions on the correctness of cryptographic code, and shows why some cryptographic libraries succeed while others fail.
/presentations/abstractions-cryptography/en/mediumimage/Isabig-1523063877669.JPG)
-
Guardians of the Galaxy: Architecting a Culture of Secure Software
Laura Bell talks about the challenges in the emerging space of security and how to work together to fix them.
/presentations/security-architecture-culture/en/mediumimage/Labig-1522591216379.JPG)
-
Enable Authentication and Authorization with Azure Active Directory and Spring Security
Yawei Wang shows through a live coding session how to use Spring Security to enable Azure Active Directory authentication and authorization.
/presentations/authentication-azure-directory-spring-security/en/mediumimage/Yabig-1521853662146.JPG)
-
Spring Security 5: The Reactive Parts
Rob Winch demonstrates using the reactive support in Spring Security 5, starting with a simple application and incrementally securing it, showing how to architect security in a reactive application.
/presentations/spring-security-3-reactive/en/mediumimage/Robig-1521423263937.JPG)