DZone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
Refcards Trend Reports
Events Video Library
Refcards
Trend Reports

Events

View Events Video Library

The Latest Security Topics

article thumbnail
Extending Java Libraries with Service Loader
How to dynamically use Java’s Service Loader to discover and load SPI implementations at runtime for plugin-like extensions.
March 13, 2026
by Dominik Przybysz
· 3,673 Views · 3 Likes
article thumbnail
GitOps Secrets Management: The Vault + External Secrets Operator Pattern (With Auto-Rotation)
Sealed Secrets broke at scale. Learn how Vault + External Secrets Operator solved our rotation nightmare with auto-sync, zero Git secrets, and multi-cluster support.
March 13, 2026
by Dinesh Elumalai DZone Core CORE
· 3,890 Views · 1 Like
article thumbnail
Understanding Custom Authorization Mechanisms in Amazon API Gateway and AWS AppSync
This article compares the use of custom Lambda authorizers in AWS API Gateway and AWS AppSync, focusing on their respective approaches to API authorization.
March 13, 2026
by Leslie Daniel Raj
· 4,429 Views · 2 Likes
article thumbnail
DPoP: What It Is, How It Works, and Why Bearer Tokens Aren't Enough
Bearer tokens grant access to anyone who holds them. DPoP fixes this by binding each token to a cryptographic key pair: every request must include a signed proof.
March 12, 2026
by Hüseyin Akdoğan DZone Core CORE
· 3,558 Views
article thumbnail
Building the Future-Proofing Forensics Pipeline with Dilithium
Future-proof forensic chains of custody against quantum attacks using Merkle trees, blockchain, and post-quantum cryptography.
March 11, 2026
by Rahul Karne
· 11,533 Views
article thumbnail
AI in Patient Portals: From Digital Access to Intelligent Healthcare Experiences
Traditional patient portals are functional but limited. AI enables personalization, proactive engagement, and operational efficiency.
March 9, 2026
by Muhammed Harris Kodavath
· 3,272 Views · 1 Like
article thumbnail
How to Use AWS IAM Identity Center for Scalable, Compliant Cloud Access Control
This article explains how AWS IAM Identity Center centralizes access control and helps teams manage secure, compliant access across AWS environments.
March 9, 2026
by Ankush Madaan
· 2,260 Views
article thumbnail
Infrastructure as Code Is Not Enough
Learn about why Infrastructure as Code alone can't ensure reliability and how intent, policy, and feedback loops create self-correcting, resilient systems.
March 4, 2026
by Venkatesan Thirumalai
· 2,732 Views
article thumbnail
Implementing Decentralized Data Architecture on Google BigQuery: From Data Mesh to AI Excellence
Traditional centralized data lakes don’t scale for AI. A Data Mesh not only decentralizes data ownership by domain but also enforces federated governance.
March 3, 2026
by Jubin Abhishek Soni DZone Core CORE
· 2,776 Views · 1 Like
article thumbnail
Probabilistic Data Structures for Software Security
Learn how bloom filters and count-min sketch make security systems fast and scalable by trading perfect accuracy for speed and memory efficiency.
March 3, 2026
by Shashank Gollapudi
· 1,778 Views · 1 Like
article thumbnail
Why Your "Stateless" Services Are Lying to You
“Stateless” systems aren’t. Hidden state — caches, pools, SDK retries, kernel buffers — breaks deployments and scaling. Make it explicit, externalized, and observable.
March 2, 2026
by David Iyanu Jonathan
· 1,253 Views
article thumbnail
5 Security Considerations for Deploying AI on Edge Devices
When securing AI on edge devices, consider data protection in transit and at rest, secure OTA updates, identity and access management, and more.
March 2, 2026
by Zac Amos
· 1,441 Views
article thumbnail
I Watched an AI Agent Fabricate $47,000 in Expenses Before Anyone Noticed
This explores AI agent failures with organizations deploying autonomous systems faster than their governance, monitoring, and security controls can safely support.
February 26, 2026
by Igboanugo David Ugochukwu DZone Core CORE
· 2,234 Views
article thumbnail
Zero-Trust Cross-Cloud: Calling AWS From GCP Without Static Keys Using MultiCloudJ
This guide demonstrates exchanging Google ID tokens for temporary AWS STS credentials to enable secure, zero-trust communication between clouds using MultiCloudJ.
February 26, 2026
by Sandeep Pal
· 1,392 Views · 3 Likes
article thumbnail
OAuth Gone Wrong: The Hidden Token Issue That Brought Down Our Login System
A reused expired refresh token caused widespread login failures in our Node.js app. This article shows how it happened, how we fixed it, and how to avoid it.
February 26, 2026
by Bhanu Sekhar Guttikonda DZone Core CORE
· 1,077 Views · 1 Like
article thumbnail
The DevSecOps Paradox: Why Security Automation Is Both Solving and Creating Pipeline Vulnerabilities
This article examines how DevSecOps and AI automation shifted attacks to CI/CD pipelines, making security tools themselves a growing attack surface.
February 24, 2026
by Igboanugo David Ugochukwu DZone Core CORE
· 1,660 Views · 1 Like
article thumbnail
Supply Chain Security for Tools and Prompts
Tools, routers, signatures, versioned prompts, and semantic models enforce pinned bundles at runtime and emit audit-proof evidence stamps.
February 23, 2026
by Anusha Kovi DZone Core CORE
· 1,118 Views
article thumbnail
Architecting Zero-Trust Database Access in Kubernetes With Vault Dynamic Secrets
Replace static passwords with dynamic, ephemeral credentials using Vault and sidecar injection to automate database security in Kubernetes workloads.
February 20, 2026
by Niranjan Kumar Sharma
· 3,720 Views · 2 Likes
article thumbnail
A Unified Defense Against MITRE’s Top Injection Attacks
Attackers continue to exploit injection flaws — all ranked among the most dangerous weaknesses in MITRE’s 2025 CWE Top 25 list with 41 actively exploited vulnerabilities.
February 20, 2026
by Ravi Sastry Kadali
· 1,274 Views · 1 Like
article thumbnail
Automating Unix Security Across Hybrid Clouds
Here is an architectural pattern for building a fully automated, cross-cloud patching engine using GitLab CI, Docker, and Ansible.
February 19, 2026
by Dippu Kumar Singh
· 1,835 Views
  • Previous
  • ...
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • ...
  • Next
  • RSS
  • X
  • Facebook

ABOUT US

  • About DZone
  • Support and feedback
  • Community research

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • Become a Contributor
  • Core Program
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 3343 Perimeter Hill Drive
  • Suite 215
  • Nashville, TN 37211
  • [email protected]

Let's be friends:

  • RSS
  • X
  • Facebook
×