BT

Facilitating the Spread of Knowledge and Innovation in Professional Software Development

Write for InfoQ

Register Sign in

Unlock the full InfoQ experience

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources.

Log In

or

Don't have an InfoQ account?

Stay updated on topics and peers that matter to youReceive instant alerts on the latest insights and trends.
Quickly access free resources for continuous learningMinibooks, videos with transcripts, and training materials.
Save articles and read at anytimeBookmark articles to read whenever youre ready.

Logo - Back to homepage

News Articles Presentations Podcasts Guides

Topics

Development

Featured in Development

From MCP and Vibe Coding to Harness Engineering: How AI Native Engineering Evolved in One Year

Birgitta Böckeler, Distinguished Engineer at Thoughtworks, returns to discuss the rapid evolution of AI in software delivery. She touches on the evolution from vibe coding, the changing tools landscape and the more autonomous agents that, besides higher velocity, introduce higher risk.

All in development

Architecture & Design

Featured in Architecture & Design

Increasing Users' Data Agency: from BlueSky's AT Protocol to the Local-First Software Movement

Martin Kleppmann, an associate professor at Cambridge and author of Designing Data-Intensive Applications, discusses the evolution of data systems over the last decade, mainly the shift from monolithic databases to modular building blocks. Kleppmann underlines the importance of moving from cloud-centric data storage systems to decentralised data storage similar to Bluesky’s AT protocol.

All in architecture-design

AI Infrastructure

Featured in AI, ML & Data Engineering

Rules for Understanding Language Models

Naomi Saphra discusses 5 rules governing language model behavior, breaking down why LLMs act like populations rather than individuals. She explains how tokenization creates strange semantic blind spots and highlights the mechanics of sycophancy, showing how models leverage subtle data associations to match user biases and demographics - even guessing political views based on favorite sports teams.

All in ai-ml-data-eng

Culture & Methods

Featured in Culture & Methods

Craig McLuckie on Culture as a Team's Operating System in the AI Era

In this podcast, Shane Hastie, Lead Editor for Culture & Methods spoke to Craig McLuckie, co-creator of Kubernetes and CEO of Stacklok, about the impact of AI coding tools on open source communities and engineering teams, designing deliberate organisational culture, and navigating evolving career paths for engineers in the age of AI.

All in culture-methods

DevOps

Featured in DevOps

The Time It Wasn't DNS

Sean Klein discusses why "human error" is a dangerous myth in complex systems. Sharing the inside story of Azure’s 2023 global WAN outage, he explains how modern incident analysis looks past the "Five Whys" to uncover systemic issues. Learn how engineering leaders can move away from blame, improve Standard Operating Procedures, and design resilient systems that actively protect their engineers.

All in devops

Events

Helpful links

Choose your language

Online InfoQ AI Engineering Certification

Production AI calls on retrieval, agents, evals, and infrastructure, checked with peers.
Register Now.

Online InfoQ Architect Certification

Distributed systems, decentralized decisions, platform engineering, and AI architecture.
Register Now.

QCon San Francisco

What's working across AI, architecture, and leadership, from the teams doing it.
Register. Early bird ends July 14.

QCon London

What early-adopter teams have proven in production, across 15 engineering tracks.
Register. Early bird ends July 14.

InfoQ Homepage Zero Trust Content on InfoQ

Articles

RSS Feed

Cloud

Designing Continuous Authorization for Sensitive Cloud Systems

Most cloud systems make one authorization decision at login. Everything after runs on trust established at authentication time. For systems handling regulated data, that gap is where breaches happen. This article presents a continuous authorization architecture covering risk-tiered evaluation, behavioral baselines, privacy-preserving audit trails, and a phased and incremental rollout.

Venkata Nedunoori
on Jun 19, 2026
Architecture & Design

Securing Cell-Based Architecture in Modern Applications

Securing cell-based architecture is essential to fully capitalize on its benefits while minimizing risks. To achieve this, comprehensive security measures must be put in place. Organizations can start by isolating and containing cells using sandbox environments and strict access control mechanisms like role-based and attribute-based access control.

Stefania Chaplin
on Oct 28, 2024
DevOps

API Security: from Defense-in-Depth (DiD) to Zero Trust

Nearly all companies have experienced security incidents but few have an API security policy that includes dedicated API testing and protection. A defense-in-depth approach that includes boundary defense, observability, and authentication is recommended.

Ming Wen
on Nov 30, 2022

BT