GitLab 8.9 Adds File Locking, Hardware U2F Support
The release of GitLab 8.9 brings a file locking, a refreshed UI, and hardware-based two-factor authentication. Teaming up with Yubico, developers can now use a hardware YubiKey to automatically authenticate a GitLab session without having to type in a 6-digit TOTP code. In addition, file locking will keep binary assets from getting destroyed during a merge.
Capital One Launches Developer Platform
Capital One launched the DevExchange Beta developer site and initial API offering last month.
Secrets Management with Chef-Vault
Secret management is a difficult problem in a distributed and scalable environment. Chef-vault is a Chef tool built on top of encrypted data bags that eliminates the need to share the decryption key with all users and nodes of an infrastructure.
Keeping Your Secrets Safe in a Distributed and Scalable Environment
At the Velocity Conference in Amsterdam, Alex Shoof explained how to manage secrets in a scalable and distributed environment. Shoof proposed a system based on five fundamental principles for secret management.
Facebook's and Twitter's SDKs for Apple tvOS Enable Onboarding and Analytics
Facebook and Twitter have released SDKs for Apple tvOS to provide support for onboarding, user verification, and analytics.
Nexmo Verify SDK Touts Easy Phone Number-based Authentication
Nexmo has announced the availability of its Verify SDK for iOS, Android, and JavaScript, which makes it possible to securely register and authenticate users based on their mobile phone numbers, Nexmo says.
Google Introduces Smart Lock for Passwords
Google has announced at I/O 2015 the Google Identity Platform, a collection of tools and APIs for managing identities and dealing with authentication and authorization across Android, iOS and web applications.
Major Update to Firebase Brings Rich Authentication Tokens
Firebase has this week announced major updates to its user authentication, including automatic session persistence, and rich authentication tokens for use in Security Rules.
Katana Gets OpenIDConnect, WSFederation Components
Katana 3, now close to GA, comes with new security components providing OpenIDConnect and WSFederation support.
Microsoft Beefs Up Cloud Identity Services as Part of Mobile Push
As part of launching an Enterprise Mobility Suite, Microsoft announced that Azure Active Directory Premium was set to hit General Availability. Microsoft Azure Active Directory Premium extends the free identity management and single sign-on service with additional group-management capabilities, rebranding options, security analytics, and more.
Amazon re:invent roundup
Amazon announced a number of new services at the recent re:invent conference in Las Vegas: Amazon WorkSpaces - Desktop Computing in the Cloud, Identity and Access Management using SAML, Amazon AppStream - Delivering Streaming Applications from the Cloud, Amazon Kinesis - Streaming Big Data, CloudTrail - Capturing AWS API Activity, Postgres support in RDS and new EC2 instance types
Apigee Now Supports Node.js and Open Sources Volos
Apigee Edge now supports Node.js and has open sourced Volos, a project containing a set of API management modules.
Visual Studio 2013 Adds New Project Templates with Improvements and Social Accounts Authentication
The recently released Visual Studio 2013 includes new project templates with several improvements which enables developers to build projects and applications faster.
Simplified Multiple Provider Authorization with OAuth.io
OAuth.io is an API and a service interfacing with more than 80 OAuth providers. This article contains an interview with Mehdi Medjaoui, Co-founder of OAuth.io, providing details on security, licensing and future developments.
Tune Up Your Online Privacy with Clef
Clef is like a retina scan for your smart phone, which gives a whole new meaning to Retina Display. You can use Clef as an Open ID to log in from your smart phone only once to access many different web sites when online. Rather than typing in your user ID and password for each web site.
