Topic: security

2014: Into the breach

Software vulnerabilities have existed for as long as there has been software. Organizations and their developers have been locked in a cat-and-mouse game with the legion of hackers looking to steal data. Every time one breach is fixed, another is exploited, and ‘round and ‘round it goes. So, after Julian Assange and WikiLeaks, Edward Snowden, … continue reading

Zeichick’s Take: Innovate in the cloud, cheaply and securely

For development teams, cloud computing is enthralling. Where’s the best place for distributed developers, telecommuters and contractors to reach the code repository? In the cloud. Where do you want the high-performance build servers? At a cloud host, where you can commandeer CPU resources as needed. Storing artifacts? Use cheap cloud storage. Hosting test harness? The … continue reading

Zeichick’s Take: Is the best place for data on-prem or in the cloud? Ask your lawyer

Cloud-based storage is amazing. Simply amazing. That’s especially true when you are talking about data from end users that are accessing your applications via the public Internet. If you store data in your local data center, you have the best control over it. You can place it close to your application servers. You can amortize … continue reading

IDC’s Top 10 technology predictions for 2015

As the year comes to a close, it’s the season of analyst firms looking ahead at the year to come in technology. Not to be confused with Gartner’s Top 10 strategic technology trends for 2015, market intelligence firm IDC has released its own future forecast: “IDC Worldwide Predictions 2015: Accelerating Innovation on the 3rd Platform.” … continue reading

SD Times blog: Surveys show open source makes for faster secure development

One of the things we see a lot of here at SD Times is surveys. It’s a great idea for your company to survey its customers, and the resulting information can be really useful—not just to your company, but to those of us who track the industry and its trends. Thus, I was fairly disturbed … continue reading

Zeichick’s Take: Tomorrow’s forecast: Distributed Denial of Service

Malicious agents can crash a website by implementing a DDoS—a Distributed Denial of Service Attack—against a server. So can sloppy programmers. Take, for example, the National Weather Service’s website, which is operated by the United States National Oceanic and Atmospheric Administration, or NOAA. On August 29, the service went down, hard, as single rogue Android … continue reading

SD Times news digest: Oct. 28, 2014 –New Azure services at TechEd Europe, IBM Cloud OpenStack and data services and WebRTC on IE

Microsoft announces more Azure updates at TechEd Europe Little more than a week following its Azure press event, Microsoft introduced new services including Azure Batch, Azure Operational Insights and Azure Automation at theTechEd Europe conference in Barcelona, Spain. According to a blog post from Microsoft Azure product marketing director Vibhor Kapoor, Azure Batch delivers job … continue reading

Gartner’s Top 10 strategic technology trends for 2015

For organizations looking to stay on top of the latest technology trends, Gartner has released its annual list of the top 10 strategic technology trends they say organizations should keep their eye on. “We have identified the top 10 technology trends that organizations cannot afford to ignore in their strategic planning processes,” said David Cearley, vice … continue reading

SD Times news digest: Oct. 6, 2014—Google’s Polycasts, DARPA’s SafeWare, BlazeMeter and Sauce Labs’ partnership and Microsoft and Samsung’s patent dispute

Google launches Polycasts Google wants to help developers get started with Polymer and Web Components. The company has announced Polycasts, a new video series dedicated to teaching one concept at a time, and highlights best practices for working with Polymer and DevTools. “Because Polymer and Web Components are such big changes for the platform, there’s … continue reading

OpenSSL unveils first security policy

The development team behind the OpenSSL open-source encryption toolkit has released its first official security policy, laying out its internal security protocols and plans to pre-notify organizations implementing OpenSSL about impending updates and security fixes. The OpenSSL pre-notification policy will allow notices to be sent out over the OpenSSL mailing list and on the homepage … continue reading

How Red Hat and the open-source community are fortifying Docker

As Docker has exploded in popularity, so too has the open-source community around it. Now, as more and more large enterprise software companies jump on the Docker bandwagon, the community is tackling some of the larger issues behind the emerging technology, namely container security. One of the big names driving security improvements in Docker container … continue reading

Zeichick’s Take: They want to steal your data

Tuesday’s voicemail from my bank was short and simple: “My name is Patricia from the Bank of America fraud prevention department. This important message is for Mr. Alan Zeichick. We are calling to verify some potentially suspicious activity on your account. It is very important that we speak with you.” Nobody had pilfered a credit-card … continue reading

DMCA.com Protection Status