Security
Security | News, how-tos, features, reviews, and videos
Cloud’s key role in the emerging hybrid workforce
Hybrid work would not be possible without cloud computing. However, enterprises should address these mistakes before they kill productivity.
3 wins and 3 losses for cloud computing
The good, the bad, and the ugly of a decade of cloud computing: Security and agility are definite wins, but cost and complexity are serious drawbacks.
AutoRabit launches devsecops tool for Salesforce environments
CodeScan Shield comes with a new module, OrgScan, which governs organizational policies by enforcing the security and compliance rules mandated for Salesforce environments.
Rust programming language gains dedicated security team
Beginning with a security audit and threat modeling exercises, the Rust language security initiative draws on staff and support from the OpenSSF and JFrog.
Golang adds vulnerability management tooling
Go’s new support for vulnerability management pairs the Go vulnerability database with tooling that analyzes a codebase and surfaces known vulnerabilities.
3 multicloud lessons for cloud architects
Designing and deploying a single cloud architecture may not prepare you to take on a multicloud, especially where security and cost optimization are concerned.
Intro to blockchain consensus mechanisms
Blockchains are evolving, and consensus mechanisms are at the heart of it. Here's a quick look at the range of decentralized validation and authentication mechanisms in use today.
Automation is the ultimate cloud security tip
Manual cloud security often leads to a major breach. Helping leadership understand the risks can make the case for funding to do it right.
Security is hard and won’t get much easier
Software systems are complex, and development teams have conflicting goals. Oh, and people are imperfect.
Kubescape boosts Kubernetes scanning capabilities
End-to-end open source security platform for Kubernetes has added vulnerability scanning for code repositories and container image registries.
Zero-knowledge proof finds new life in the blockchain
ZKP has decades of history in computer science and cryptography. Now, it's evolving to support decentralized authentication for blockchains and web3.
How Cloudflare emerged to take on AWS, Azure, and GCP
The upstart internet security and edge infrastructure company has reinvented itself to challenge the hyperscale cloud providers. Can it succeed?
It’s past time to figure out cross-cloud security
The people deploying multicloud will tell you that 'security is a nightmare.' Cross-cloud abstraction and automation of security services is the right solution.
Build SBOMs with Microsoft’s SPDX SBOM generator
Microsoft is making its internal, cross-platform, software bill of materials generation tool public and open source.
CrowdStrike enhances container visibility and threat hunting capabilities
The cloud-native security provider wants to help customers gain visibility into all of their containers, as well as uncover a growing array of threats across multicloud environments.
7 biggest Kubernetes security mistakes
The most dangerous security holes are often the most basic. Start improving your Kubernetes security posture by fixing these simple mistakes.
How we’ll solve software supply chain security
Security teams need a standard set of processes for locking down roots of trust for software artifacts, and developers need a clear path to balance open source selection against security policies. Open source has answers.
