InfoQ Homepage QCon Software Development Conference Content on InfoQ
-
This Will Cut You: Go's Sharper Edges
Thomas Shadwell talks about how distinct, exploitable misuse patterns arise in software languages, and through examples in Go hopes to show the language's distinct security characteristics.
/presentations/go-security/en/mediumimage/Thobig.JPG)
-
Making the Most out of a Bad Day as a Developer
Wim Remes talks about the war stories from his experience as a penetration tester and the numerous years of work with development teams building secure development practices.
/presentations/security-penetration-tester/en/mediumimage/Wimbig.JPG)
-
Building Secure Player Experiences at Riot Games
David Rook talks about the Riot Games Application Security program. He focusses on the tech and social aspects of the program and why he feels both are important when it comes to writing secure code.
/presentations/security-riot-games/en/mediumimage/Davbig.JPG)
-
How to Backdoor Invulnerable Code
Josh Schwartz takes a look at the real tactics, with examples, used to compromise and backdoor seemingly secure products by exploiting the humans and systems that create them.
/presentations/backdoor-code/en/mediumimage/Joshbig.JPG)
-
Blockchain: The Oracle Problems
Paul Sztorc talks about why the oracle problem is so hard (the historical evolution of failures, why they fail), and the basics of blockchain ("blockchain as immortal software", ledger "rents").
/presentations/blockchain-oracle-problems/en/mediumimage/Paulbig.JPG)
-
Big Ideas: Decentralized Storage
David Vorick talks about the need for distributed/decentralized storage, real life use cases for distributed storage systems, dealing with data loss in a distributed system, overviewing IPFS and Sia.
/presentations/decentralized-storage/en/mediumimage/Davbig.JPG)
-
Case Study: Alternate Blockchains
Jeremy Rand talks about Namecoin and Monero, the advantages to alternate blockchains, and risks of using chains that are not as secured or are merge mined.
/presentations/namecoin-monero/en/mediumimage/Jerbig.JPG)
-
Practical Blockchains: Building on Bitcoin
Peter Todd answers the questions: why use Bitcoin over other blockchains, what is safe, future proof ways to peg data to Bitcoin's blockchain and what is Bitcoin script, and how it can be used.
/presentations/blockchain-bitcoin/en/mediumimage/Petbig.JPG)
-
Practical Cryptography & Blockchain Panel
The panel discusses the most important trends involving the blockchain today and fields questions from the audience. Topics covered: smart contracts, oracles, sidechains, and blockchains.
/presentations/cryptography-blockchain/en/mediumimage/Panelbig.jpg)
-
Observability, Event Sourcing and State Machines
Peter Lawrey explains the use cases and practicalities for having downstream services consuming all of the state changes of an upstream service in order to provide automated insight of services.
/presentations/observability-event-sourcing/en/mediumimage/Petbig.JPG)
-
Avoiding Alerts Overload from Microservices
Sarah Wells talks about the FT team that currently has over 150 microservices in production. Wells shares how her team regain control of their inboxes and their time, and offers some tips and tricks.
/presentations/microservices-alerts/en/mediumimage/Sarbig.JPG)
-
After Acceptance: Reasoning about System Outputs
Stefanos Zachariadis discusses techniques for bringing testing to production, showing how to sanity check a live system using end-to-end testing, and limiting interference with real users.
/presentations/testing-production/en/mediumimage/Stebig.JPG)