Security Resources

OPAL + OPA VS XACML

Compare the traditional XACML architecture authorization flow with the one provided by OPA + OPAL and then discuss the differences.

September 15, 2022

by Daniel Bass

· 4,674 Views · 1 Like

Compliance Automated Standard Solution (COMPASS), Part 1: Personas and Roles

This is the first part of our series illustrating the challenges that organizations and cloud providers face when trying to achieve continuous compliance.

September 15, 2022

by Anca Sailer

· 7,378 Views · 2 Likes

The Maze of Python Dependency Management

In this post, I'd like to shed some light on dependency management in Python. Python dependency management is a whole different world.

September 13, 2022

by Nicolas Fränkel

CORE

· 5,520 Views · 2 Likes

Distributed Denial-of-Service (DDoS) Attacks: What You Need to Know

Distributed Denial of Service (DDoS) attacks are growing quickly, not simply in the number of attacks but also in intensity.

September 8, 2022

by Ross Moore

· 9,476 Views · 1 Like

Preventing SQL Injections in Java With JPA and Hibernate

Preventing SQL Injections in Java using SQL Parameters with the Java Persistence API (JPA) and Hibernate ORM.

September 6, 2022

by Elmar Dott

CORE

· 6,962 Views · 4 Likes

Cloud Migration Manual: The Adjustment to SaaS Model

Moving to SaaS software is a huge step to take, and it requires deep analysis and proper process setup. This post intends to guide you on how to move to SaaS.

Updated September 6, 2022

by Tetiana Stoyko

· 8,550 Views · 3 Likes

How Does the Milvus Vector Database Ensure Data Security?

This article aims to analyze how Milvus, the vector database ensures data security with user authentication and TLS connection.

September 5, 2022

by Charles Xie

· 3,977 Views · 2 Likes

Row Level Security in Hyperlambda and SQL

Row level security in Hyperlambda and SQL is a declarative feature when generating your CRUD backend. One simple dropdown list, and it’s done!

September 3, 2022

by Thomas Hansen

CORE

· 5,561 Views · 2 Likes

Securing Containers With Seccomp Filters

In this article we present a novel way to protect your container applications post-exploitation. This additional protection is called Seccomp-BPF.

September 2, 2022

by C.J. May

· 8,983 Views · 1 Like

How to Securely Configure an AWS EC2 Instance

AWS EC2 is one of AWS's most popular and widely used services. In this article, learn some of the ways that can help configure our EC2 instances securely.

September 2, 2022

by Richa Nevatia

· 6,373 Views · 1 Like

103 Ethereum Solidity Developer Interview Questions

Need help passing your next interview on Solidity? This article provides you with top Solidity interview questions and answers so you can become an Ethereum Solidity Developer.

Updated September 1, 2022

by Polina Kurbatova

· 19,393 Views · 11 Likes

How to Use JWTs for Client-Side Auth With GraphQL

In this article, we will dig deep into best practices in implementing JWT on the client side while keeping security considerations in mind.

September 1, 2022

by Tanmai Gopal

· 5,023 Views · 2 Likes

Protect the Pipe! Secure CI/CD Pipelines With a Policy-Based Approach

This post will discuss emerging cloud-native solutions for CI/CD pipelines and how to improve the overall security posture of CI/CD pipelines.

September 1, 2022

by Jim Bugwadia

CORE

· 6,980 Views · 1 Like

Greater App Security with Face Verification

A walkthrough of using and implementing a face verification solution.

August 31, 2022

by Jackson Jiang

CORE

· 7,970 Views · 2 Likes

Using JWT in a Microservice Architecture

This article shows how to use JWT for cross-service authentication/authorization.

August 30, 2022

by Viacheslav Shago

· 20,724 Views · 9 Likes

Cybersecurity Solution Highlights From Black Hat 2022

This post gives an overview of the 12 solutions offered at Black Hat 2022. These are representative of the themes presented and discussed during the conference.

August 29, 2022

by Tom Smith

CORE

· 7,901 Views · 2 Likes

What Is Encryption and How Does It Work?

Encryption encodes data, so only programs that know how to decode it can read it. Most encryption programs use a "key" to transform plaintext into ciphertext.

August 29, 2022

by Eric Goebelbecker

CORE

· 9,830 Views · 1 Like

All the Questions You Were Afraid to Ask About SBOM

What if we could enumerate all the software components we use and produce, and we could distribute and consume it easily? This is what SBOM is trying to solve.

August 27, 2022

by Álvaro Iradier

· 7,913 Views · 3 Likes