InfoQ Homepage Security Content on InfoQ
-
Build the Right Thing - De-risk Your Products with Experiments
Andrea Darabos discusses how to lower the startup risk with Minimum Viable Experiments which help product managers and investors build with more confidence and avoid costly mistakes.
/presentations/minimum-viable-experiments/en/mediumimage/Andreabig.JPG)
-
Scammers, Hackers, and Fraud on the Blockchain
Olaf Carlson-Wee explores key strategies to keep a company safe from a wide range of malicious actors in the virtual Wild West.
/presentations/bitcoin-security/en/mediumimage/Olabig.JPG)
-
Securing Code Through Social Engineering
Christina Camilleri shows how social engineering can change the way security is woven into testing, operations, and development workflows to better secure code against human threats.
/presentations/security-social-engineering/en/mediumimage/Chrisbig.JPG)
-
Android Apps, an Attacker’s Perspective
Tony Trummer focuses on how to apply an adversarial perspective when building Android applications, how to identify attack surfaces and the thought process attackers use.
/presentations/android-app-attacker/en/mediumimage/Tonybig.JPG)
-
The State of Securing RESTful APIs with Spring
Rob Winch discusses how to properly secure your RESTful endpoints and explores some common pitfalls when applying security to RESTful APIs with the help of Spring Security.
/presentations/spring-security-rest-api/en/mediumimage/Robbig.JPG)
-
Applications Through an Attacker’s Lens
Michael Coates explores how attackers target, analyze and compromise applications and discusses recent high profile compromises and deconstructs them to understand exactly what went wrong.
/presentations/security-attacker-mind/en/mediumimage/Micbig.JPG)
-
Improving Cloud Security with Attacker Profiling
Bryan Payne provides a clear understanding of different types of attackers, their skill sets, and how compromises happen, with a specific focus on protecting cloud-based applications.
/presentations/attacker-profiling-security/en/mediumimage/Brbig.JPG)
-
Is your profiler speaking the same language as you?
This talk covers the classic profiler features. What is a hotspot? What is the difference between sampling and instrumentation from the profiler perspective? What are the problems with those methods?
/presentations/docklands-ljc/en/mediumimage/Simbig.JPG)
-
The Imitation Game: The New Frontline of Security
S. Ghosemajumder reviews the evolution of AI based security attacks that imitate the actions of real people, and looks at how they are changing the nature of developing online applications securely.
/presentations/ai-security/en/mediumimage/Shubig.JPG)
-
A How-to Guide to Security in the PAAS Cloud
John Field and Shawn McKinney examine the security of a typical Java web application and describe 5 common application security architecture patterns taken from real world customer problems.
/presentations/security-paas-cloud/en/mediumimage/Doibig.JPG)
-
Securing Microservices with Spring Cloud Security
Will Tran talks about the authentication and authorization scenarios that one may encounter once he starts building out microservices.
/presentations/microservices-security-spring-cloud/en/mediumimage/Willbig.JPG)
-
Weaving Security into the SDLC
Bill Sempf discusses security in the context of the SDLC, presenting the analysis results from reviewing several code sources, the problems found and the corresponding solutions.
/presentations/security-sdlc/en/mediumimage/Billbig.JPG)