DevSecOps
OpenSSL Fiasco: What can DevOps Learn? | Elon Fires ‘50%’ of Twitter
Richi Jennings | | CVE-2022-3602, CVE-2022-3786, Elon Musk, If life were predictable it would cease to be life—and be without flavor, layoffs, OpenSSL, RCE, redundancy, security vulnerabilities, The Long View, twitterIn this week’s The Long View: The OpenSSL project has egg on its face, and half of Twitter’s staff are for the chop tomorrow ...
Meta Income Down by Half | Will Apple Make it Worse? | Linux Secure Boot Fix
Richi Jennings | | Apple, facebook, in-app purchase, initrd, iOS, Lennart Poettering, linux, Mark Zuckerberg, Meta, Metaverse, secure boot, systemd, The Long View, Your time is limited—so don’t waste it living someone else’s lifeIn this week’s The Long View: Meta’s latest results are very bad, Apple wants its cut of Facebook ads, and Lennart Poettering proposes improving Secure Boot for Linux ...
Kill the Password: Google on Board | 4-Day Week Proves Worthy
Richi Jennings | | 4-Day Work Week, FIDO, google, I am not bound to please thee with my answer, Passkeys, The Long View, WebAuthnIn this week’s The Long View: Passkeys is getting another big-tech supporter, and the four-day workweek train picks up speed ...
AWS re:Invent Roundup: Private 5G | Graviton3 ARM Chips | DevOps Guru++
Richi Jennings | | 5G, Adam Selipsky, Amazon, Amazon RDS, Amazon Web Services, ARM, AWS, DevOps Guru, OpenRAN Group, re:Invent, re:Invent 2021, The Long ViewIn this week’s The Long View: Three things that caught my eye from Amazon Web Services’ re:Invent conference. Private 5G, Graviton3 chips, and something called DevOps Guru for RDS (yes, really) ...
Securing Your Software Development Pipelines
Earlier this year, it was announced that the attack on IT management software provider SolarWinds had been used to compromise other organizations, including parts of the United States government. There were several ...
DevOps Chat: Maximizing the Benefits of DevSecOps
When discussing security in DevOps, we often focus on the security tools instead of the DevSecOps process itself. In this DevOps Chat, ZeroNorth CEO John Worrall takes us to the root of ...
Solving Cloud-Native Challenges in the Rush to the Cloud
The shift to cloud-native environments away from traditional data center infrastructures continues unabated, but security and complexity challenges remain a struggle for DevOps teams. These were two of the main takeaways in ...
Unlocking Your DevOps Automation Mindset
In the new digital normal, where remote working has upended conventional software development cycles, the role of DevOps is central. Many enterprises have an accelerated digital agenda, but are often underinvested in ...
5 Principles for Securing DevOps
DevOps, a new model for software development, is transforming the way the world creates software. And despite its substantial organizational, cultural and technological requirements, this new way of organizing development and IT ...
How-To Stop Copying and Pasting Flaws Using Open Source Code
In this video, learn how to prevent critical flaws in your copying and pasting methods using open source code through this video presentation from Brittany O'Shea, Senior Product Marketing Manager at Veracode ...
State of Software Security – Open Source Edition
For our State of Software Security: Open Source Edition report, we analyzed the security of the open source libraries found in 85,000 applications. Below are highlights of that analysis. To see these ...
Understanding Modern Software Development: What Security Professionals Need to Know
There has been a noticeable shift from a monolithic architecture to services- or microservices-oriented architecture. Microservices architecture entails breaking applications into smaller, interconnected services instead of one large, monolithic application. The reason ...
