Security Resources

IoC vs. DI

Some people use the terms Inversion of Control and Dependency Injection interchangeably. Let's see how they're different and how they can work together.

December 27, 2017

by Francisco Alvarez

CORE

· 141,227 Views · 106 Likes

Authentication Provider Best Practices: Centralized Login

Centralized login protocols are easier to implement and maintain, and are better for the user, while creating a more secure authentication process.

December 25, 2017

by Kim Maida

· 13,145 Views · 1 Like

Multi-Release JARs: Good or Bad Idea?

The folks at Gradle feel that Java 9's multi-release JARs are a poor solution to a real problem for library designers. See how to create an MRJAR and why you shouldn't.

December 23, 2017

by Cédric Champeau

· 19,815 Views · 16 Likes

Row Level Security in Hibernate Using @Filter

Learn how to give certain people permission to view certain parts of your database, and thus increase your database's security.

December 20, 2017

by Ali Akbar Azizkhani

· 21,831 Views · 12 Likes

Check out this great article on to learn how to create authentication and authorization protocols in your web application using ASP.NET.

December 19, 2017

by Kelvin Santos Amorim

· 43,948 Views · 4 Likes

SAML-Based SSO With Azure AD B2C as an IDP

While signing on might not be the most fun thing for users, for devs, it's a critical part of the process of application security.

December 18, 2017

by Shanky Munjal

· 16,186 Views · 3 Likes

Reactive Streams With Spring Data Cassandra

Using Cassandra and also want to incorporate Reactive Streams into your program? Here's how you can do it with Spring Data Cassandra.

Updated December 14, 2017

by Dan Newton

· 26,641 Views · 10 Likes

Spring 5, Embedded Tomcat 8, and Gradle

Learn how to use Gradle to structure a Spring 5 project with Tomcat 8 embedded inside. See how to bootstrap Spring 5, support JSON content, and more!

December 9, 2017

by Bruno Krebs

· 33,919 Views · 19 Likes

How to Improve OAuth Security With HMAC Validation

We explain a type of attack that's possible to carry out on systems using OAuth and how to mitigate them using keyed-Hash Message Authentication Code Validation.

December 5, 2017

by Lahiru Sandaruwan

· 9,092 Views · 3 Likes

Monitoring Cryptocurrency With InfluxDB and Telegraf

To help you keep track of the ever-changing world of crypto, I'm going to walk you through how to build a custom service input plugin for Telegraf.

December 5, 2017

by Russ Savage

· 10,786 Views · 3 Likes

Build a REST Web Service Using Spring

This tutorial provides a step-by-step guide for building and configuring a REST web service in Java using the Spring framework.

December 2, 2017

by Hussein Terek

· 274,218 Views · 25 Likes

Build a Secure SPA With Spring Boot and OAuth

Learn how to build a secure SPA using Spring Boot and OAuth while using a Spring Boot starter to get additional support for validation and authority mapping.

Updated November 28, 2017

by Brian Demers

· 31,953 Views · 33 Likes

Security Testing With JMeter - Learn How

A professional security tester shows us how to use the open source tool JMeter to perform security tests on our web applications.

November 27, 2017

by Roman Aladev

· 12,257 Views · 3 Likes

Add User Management to Your Play Framework App With OIDC

This dive into Play Framework explores how you can bring user management to your app using Okta, pac4j, and OpenID Connect.

November 27, 2017

by Matt Raible

· 10,813 Views · 3 Likes

MicroProfile: 5 Things You Need to Know

Here is everything you need to know about the ongoing design, philosophy, and process of developing the MicroProfile initiative.

November 26, 2017

by Alex Theedom

· 55,987 Views · 5 Likes

Azure NSG Flow Logs Analysis With the ELK Stack

If you haven't had a chance to explore Azure's Network Watcher, including the Network Security Group Flow logs, here's how to get the ELK integrated for analysis.

Updated November 24, 2017

by Daniel Berman

· 8,179 Views · 2 Likes

An Introduction to Blockchain

Blockchain provides the highest level of hack resistance and security optimization — and its popularity is in no way over just yet.

November 23, 2017

by Sanjeeb Mallick

· 26,512 Views · 13 Likes

Installing Java, Supervisord, and Other Service Dependencies With Ansible

Learn how to use a playbook in Ansible to install and configure an instance of Java and Supervisord, to restart the process in case of a crash.

November 22, 2017

by Bill O'Neil

· 10,655 Views · 2 Likes

Getting Started With AS2 Protocol Using AS2Gateway and OpenAS2

Learn about AS2, a specification for secure transfer of business data, and how to use it to send and receive messages between two applications.

November 22, 2017

by Manjula Piyumal

· 21,905 Views · 6 Likes

What should a DBA do other than wait for new edicts from on high — especially when data held by the IT department is a business asset and data governance is the responsibility of multiple people?

November 22, 2017

by Richard Macaskill

· 6,786 Views · 2 Likes

The Latest Security Topics