Today's vulnerability research and attack methods are becoming more sophisticated, often penetrating past the software layers and compromising the underlying hardware. When not implemented or verified properly, hardware-based security can have its own set of challenges. It is evident that the industry needs a comprehensive understanding of the common hardware security weaknesses and the corresponding secure-by-design best practices, so as to help protect sensitive data that users generate and consume each day ...
Vendor Forum
July 29, 2020
Jason M. Fung
Intel Corporation
July 22, 2020
Roopak Parikh
Platform9
While there are pains and challenges when getting started with Kubernetes, once developers are able to get through it, they start to reap a lot of benefits. Some of the key benefits include the performance and the availability that Kubernetes as a framework gives to applications ...
July 22, 2020
Roopak Parikh
Platform9
To deliver products that meet customer expectations and keep organizations competitive in today's marketplace, developers are always looking for tools and strategies to give them an edge. One of today's popular platforms for streamlining deployment and upgrades is Kubernetes, the open-source container orchestration system. But what are some of the common challenges developers face when utilizing Kubernetes for the first time? What hurdles might even an experience containers pro run into? And what tools exist to make it easier? ...
July 20, 2020
Dave McAllister
Splunk
OpenTelemetry is a project within the Cloud Native Computing Foundation (CNCF) that has gathered contributors and supporters far and wide, becoming one of the most active projects found in open source today. In fact, the collaboration that OpenTelemetry has developed is pretty amazing ...
July 15, 2020
Loris Degioanni
Sysdig
Kubernetes had a birthday last month and while it's odd to wish happy birthday to software, I do feel that we need to pay homage. In its six years of "life," Kubernetes has revolutionized how we build, and deliver applications ...
July 08, 2020
Stephen Chin
JFrog
Companies adopting a DevOps culture will need to hire more DevOps engineers, so it is important to understand what skills employers are looking for and how to acquire the right skills to stand out from the crowd. The most crucial roles call for a range of soft and hard skills, and every DevOps engineer should focus on these in order to succeed ...
June 25, 2020
Aliaksei Kulik
Exadel
It is important to not only pay attention to product delivery automation and speed but also to add security to software updates, critical system vulnerabilities, and correct system access control, which DevSecOps practices assist with. The following are DevSecOps best practices ...
June 24, 2020
Aliaksei Kulik
Exadel
DevSecOps brings together the best of DevOps with modern security practices. DevOps streamlines and accelerates the product development lifecycle, aiming to automate as much as possible. DevSecOps maintains this automation focus and incorporates security — with a goal of making each step secure and bringing in new tools and practices to make the entire product more secure as well. This 2-part blog will focus on some established and emerging ways that DevSecOps plays a role in product delivery organizations ...
June 23, 2020
Shane MacDonald
Onapsis
Setting DevSecOps goals are a critical component when aligning mission-critical application functionality with businesses' needs. In an ideal world, this would allow organizations to increase operational speed, automate manual tasks, provide continuous delivery to the company, and keep what matters most protected ...
June 18, 2020
Mark Moore
Threat Stack
The Threat Stack Security Operations Center recently pulled together research into how businesses are managing their cloud infrastructure since the COVID-19 quarantine began and identified some interesting trends that stood out to me ...
June 16, 2020
Pieter Danhieux
Secure Code Warrior
While I can certainly sympathize with overworked developers — as well as the highly unusual situation of having to churn out a life-saving app in the midst of a pandemic — a few simple vulnerabilities in what is essentially a communal codebase could spell significant issues for millions of users ...
June 15, 2020
Pieter Danhieux
Secure Code Warrior
One of the counter-attacks against COVID-19 has been through technology, with many countries rolling out contact tracing apps. It is always a bit of a worry when apps are built quickly, and these contact tracing apps are having to be rolled out in record time. It's a nightmare for developers, security people, and government agencies. So, is mistrust a valid reaction? ...
June 11, 2020
Razi Shoshani
SQream
Today developers are challenged with data that is more complex, stored in silos, often causing long gaps between application development specification creation and the deployment of the integrated solution. As organizations have struggled to meet these issues head-on, they've experienced increased strain on manpower and resources, bringing with it rising costs, and making it even more challenging to successfully integrate and manage the organization's growing data stores. Following are some questions and answers focused on actions organizations can take to ease these growing pains and ensure clean, fast data processes ...
June 08, 2020
Dion Picco
Progress
DevOps is usually lumped in with "being agile" and, sadly, misunderstood. My goal here is for you to gain a great understanding of and realizing the full potential of DevOps. Once that is established, this will lead to a better understanding of the innovation and evolution enabled by DevOps ...
June 02, 2020
Matthew Lewinki
Quest
The logical extension of the DevOps cultural shift to address this need is DevSecOps: incorporating security throughout the delivery lifecycle rather than treating it as a separate, and potentially optional, concern. Let's dig deeper into some benefits of adopting DevSecOps culture and practices ...
Pages
