InfoQ Homepage Security Content on InfoQ
-
Small Is Beautiful: How to Improve Security by Maintaining Less Code
Natalie Silvanovich explains several causes of unnecessary attack surfaces and how to avoid them.
/presentations/security-attack-surface/en/mediumimage/Natalie-Silvanovich-m-1582246124824.jpg)
-
Secure IoT Command, Control, and Exfil with Apache MiNiFi
Andy LoPresto discusses the need to secure IoT devices, detailing how to do that with Apache MiNiFi.
/presentations/secure-iot-apache-minifi/en/mediumimage/Andy-LoPresto-m-1581806311197.jpg)
-
Enabling Secure Code at Scale with Spring and OAuth2
Matt Ruel and Darren Forsythe discuss using Spring Security and OAuth2 to secure an application.
/presentations/spring-security-oauth-2/en/mediumimage/ruel-forsythe-m-1579903773016.jpg)
-
The Common Pitfalls of Cloud Native Software Supply Chains
Daniel Shapira talks about some of the common security vulnerabilities found in cloud-native environments and why it’s important to take security measures immediately to protect instances in the cloud
/presentations/pitfalls-cloud-native-supply-chains/en/mediumimage/Daniel-Shapira-m-1579744171056.jpg)
-
Quantifying Risk
Markus De Shon talks about the Netflix risk quantification that they introduced in their highest impact areas, and are gradually expanding across the enterprise.
/presentations/risk-quantification-netflix/en/mediumimage/Markus-De-Shon-m-1579056018117.jpg)
-
Security Culture: Why You Need One and How to Create It
Masha Sedova looks into techniques and cases studies of how to begin to shape an organization’s security culture to become more resilient and enable people-powered security.
/presentations/techniques-security-culture/en/mediumimage/Masbig-1578005678700.JPG)
-
User & Device Identity for Microservices @ Netflix Scale
Satyajit Thadeshwar provides useful insights on how Netflix implemented a secure, token-agnostic, identity solution that works with services operating at a massive scale.
/presentations/netflix-user-identity/en/mediumimage/Satbig-1576540658892.JPG)
-
Securing Software from the Supply Side
Nickolas Means talks about the tools that GitHub provides for Open Source maintainers to improve the safety and security of the software supply chain at the source.
/presentations/github-security-open-source/en/mediumimage/Nikbig-1575903273168.JPG)
-
Mind the Software Gap: How We Can Operationalize Privacy & Compliance
Jean Yang talks about some of the ways GDPR and CCPA can influence software, but also about practical solutions to protecting data privacy and security.
/presentations/gdpr-ccpa-privacy/en/mediumimage/Jeabig-1575475429593.JPG)
-
Hello, Spring Security 5.2
Rob Winch, Eleftheria Stein-Kousathana and Filip Hanik walk through “hello security,” demonstrating how Spring Security can be customized to meet business requirements.
/presentations/spring-security-5-2/en/mediumimage/stein-hanik-winch-m-1574895782696.jpg)
-
Multi-Tenancy OAuth with Spring Security 5.2
Josh Cummings introduces AuthenticationManagerResolver, a simple interface from Spring Security.
/presentations/authenticationmanagerresolver/en/mediumimage/josh-cummings-2-1575035528369.jpg)
-
Maintaining the Go Crypto Libraries
Filippo Valsorda talks about the challenges in maintaining and keeping the cryptographic libraries written in Go secure, safe, useful and modern.
/presentations/go-crypto-library/en/mediumimage/Filippo-Valsorda-m-1572502572664.jpg)