Automotive security and cybersecurity science
Applying security insights gained from scientific evaluation.
Security
Insights, tools, and best practices to keep your organization and users secure.
A DevOps approach to PCI compliance
Five questions for John Bullard and Benji Taylor: Insights on the challenges faced and the tools used to achieve PCI compliance.
Security and performance: Breaking the conundrum … again!
Learn how security can be enforced at the browser level through a combination of optimization techniques and security enhancements.
Cracking security misconceptions
Untangling common myths about modern information security.
Understanding Etsy’s 411 alerting framework
Five questions for Ken Lee and Kai Zhong: Insights on building Etsy's alerting framework and best practices for monitoring and alerting.
Evaluating cybersecurity product claims with a critical eye
Questions to help you weigh the true value of “scientifically proven” security solutions.
What High Reliability Organizations can teach us about security
Five questions for Lance Hayden: Insights on High Reliability Organizations (HRO) and resilient approaches to dealing with failure.
Who is…? A question, not the Unix command
Chris Baker discusses Internet cartography and its implications for risk and security. He focuses on building a mental model for how we know where on the network something is, what it is, and why that is important.
HTTPS is coming. Are you prepared?
Zack Tollman explores the key aspects of HTTPS to help developers to take control of their HTTPS-only sites.
Cory Doctorow on the problems with Encrypted Media Extensions
Confronting the World Wide Web Consortium on the new digital rights management specification.
DevOps, security, and compliance: Working in unison
How to bring DevOps, security, and compliance teams together to forge a secure infrastructure for your company.
Hardening a Unix application server
Principles of defensive configuration security.
9 tips for a more secure continuous delivery pipeline
Building security into your configuration management environment and continuous delivery workflow.
How continuous delivery helps security keep up with change
Navigating the accelerating velocity of change in DevOps.
Patrolling the dark net
Learn about the surprising origin of the dark net, and find out how you can patrol this not-so-secret domain to detect and thwart intruders.
Injecting security into Continuous Delivery
How to build security in as an essential part of your workflow.
Change control in DevOps
Containing risk through continuous delivery.
Historical substitution ciphers
Brian Sletten discusses the evolution of cryptographic tools throughout history.
Security checklist for high-performance iOS apps
Safeguard your iOS apps against common security loopholes.
Encoding vs. encryption
Brian Sletten differentiates encoding and encryption by explaining the goals and techniques of each system.
Encryption in the news
Brian Sletten explains why today's encryption technology has government authorities' attention, and is a hot topic for technology companies and the general public alike.
Security on a shoestring
Kelsey Gilmore-Innis shares the essential concepts behind securing your users’ data and offers examples of how she and her team applied them to Callisto.
DevOpsSec: Securing software through continuous delivery
Build security and compliance into your DevOps platforms and pipelines by applying the same processes and tools that DevOps practitioners use to automate software delivery and infrastructure changes.
The practical basics of Android app security
Learn where the vulnerabilities are, and how to address them.