InfoQ Homepage HTTP Content on InfoQ
-
Chrome Supports Key Pinning on Android to Improve Security
Key pinning, a technique used to prevent an attacker from tricking a vulnerable certificate authority (CA) into issuing an apparently valid certificate for a server, is now used in Chrome for Android, version 106, to help prevent man-in-the-middle attacks against Google services.
-
LinkedIn Adopts Protocol Buffers for Microservices Integration and Reduces Latency by up to 60%
LinkedIn adopted Protocol Buffers for exchanging data between microservices more efficiently across its platform and integrated it with Rest.li, their open-source REST framework. After the company-wide rollout, they reduced the latency by up to 60% and improved resource utilization at the same time.
-
Airbnb Improves Web Performance with HTTP Streaming
Airbnb introduced HTTP streaming to improve the page-loading performance of their website. They reduced the First Contentful Paint (FCP) metric by around 100 milliseconds on every page tested, including the homepage. They also minimized the impact of slow backend queries on the loading times.
-
Cloudflare Report Highlights Staggering Increase in DDoS Attacks in Q4 2021
In keeping with its custom of releasing a quarterly trends report on DDoS attacks, Cloudflare has just published its new findings for Q4 2021, which show a 95% increase in L3/4 DDoS attacks and record-breaking levels of Ransom DDoS attacks.
-
AceQL Releases Open-Source JDBC-over-HTTP Driver
AceQL has released a JDBC driver that operates over HTTP. The core of the project is open-source and an enterprise version is also available.
-
UX Patterns: Stale-While-Revalidate
Stale-while-revalidate (SWR) caching strategies provide faster feedback to the user of web applications, while still allowing eventual consistency. Faster feedback reduces the necessity to show spinners and may result in better-perceived user experience.
-
Rust Hyper HTTP Library Will Contribute to Make Curl Safer
Written in C, the popular curl and libcurl tools, which are installed in some six billion devices worldwide, are exposed to well-known security problems arising from the use of a non-memory safe language. A new initiative now aims to provide a memory-safe HTTP/HTTPS backend for curl based on Rust Hyper library.
-
Cookie Recipes - SameSite and beyond - Rowan Merewood at web.dev Live
Rowan Merewood explained, in light of the new cookie policies being increasingly adopted, how to create and configure cookies according to the scope and security required by the situation. Merewood also showcased the options available to developers to trace and debug cookies sent in requests.
-
The Status of HTTP/3
HTTP/3 is the next protocol for network communication across the Web, which is meant to partially replace HTTP/1 and HTTP/2. One month before the next QUIC Working Group meeting, to be held in Zurich next February, it may be useful to recap what HTTP/3 promises and what its current client/server support looks like.
-
Apple Open Sources ServiceTalk to the Java Community
Apple has open-sourced ServiceTalk, a JVM network application framework that provides a common and extensible networking abstraction built on top of Netty. ServiceTalk was conceived to improve low-level abstractions provided by Netty such as threading and usability. The goal of open-sourcing ServiceTalk was to provide building blocks that would enable contributions from the Java community.
-
restQL V3 Released
The latest version of restQL, a microservices query language, has been released, providing notable new features including content aggregation, support for additional HTTP methods, self-healing functionality, and a version for node.js apps. Comprehensive performance improvements have made the latest version up to twice as fast as its predecessor.
-
Netflix Announces Polly.JS HTTP Interaction Library
Netflix recently announced the release of Polly.JS, an open source library for recording, replaying and stubbing HTTP interactions.
-
GraphQL vs REST: Things to Consider
At API Days Paris 2016, Arnaud Lauret discussed GraphQL vs RESTful HTTP API’s, outlining their strengths and weaknesses. He concluded that deciding which one to adopt is context dependant, and that are many trade-offs between the two.
-
Microsoft Adds Cross-Platform Support for Azure Relay Hybrid Connections
Microsoft recently announced that their Azure Relay Hybrid Connections service has reached General Availability. The Azure Relay Hybrid Connections service, which is WebSocket-based, complements the existing Azure Service Bus Relay offering which is now being referred to as WCF Relays.
-
Chrome and Firefox Start Warning of Insecure Sites
Starting with Chrome 56 and Firefox 51, browsers will start warning users if they browse a non-HTTPS site that contains a password or credit card input field.