InfoQ Homepage Network Security Content on InfoQ
-
Applying Zero-Trust Security to Docker Containers
Several strategies exist to apply the principles of zero-trust security to development environments based on Docker Desktop to protect against the risks of security breaches, Docker senior technical leader Jay Schmidt explains.
-
The Guardian's Deep Dive into Qubes OS: a Secure Solution for Whistleblowing and Journalism
The Guardian's engineering team recently shared their experience with Qubes OS, a security-focused desktop operating system. The engineering team configured the Quebes workstations utilizing SaltStack, the default management engine in the Quebes OS.
-
Azure API Management Basic V2 and Standard V2 GA: Enhancing Scalability, Security, and Networking
Microsoft recently announced the general availability of new pricing tiers for Azure API Management, Basic v2, and Standard v2. It offers scalability and flexibility to support various development projects, from small to enterprise-level applications.
-
OpenSSL 3.2 Brings Support for QUIC, Windows Certificate Store, and More
The latest version of OpenSSL, OpenSSL 3.2.0, brings significant new features, including client support for QUIC, new digital signature algorithms, new certificate compression options, SSL/TLS security level increase, and more.
-
Azure Bastion Developer SKU: Cheaper Secure Connectivity to Azure Virtual Machines
Azure has recently announced the public preview of Bastion Developer SKU, the latest addition to the managed bastion service on Azure. The new option targets dev/test users seeking secure and simple VM connections without the need for additional features or scalability.
-
EC2 Instance Connect Endpoint Enables Secure Connectivity between Public and Private Networks
AWS recently announced Amazon EC2 Instance Connect (EIC) Endpoint, a new feature that allows users to connect securely to their instances and other Amazon Virtual Private Cloud (Amazon VPC) resources from the Internet.
-
AWS Verified Access Now GA with Support for WAF and Signed Identity Context
AWS recently announced the general availability of Verified Access, a managed service that provides secure access to corporate applications without relying on a VPN. With the GA, the cloud provider introduced support for AWS WAF and the ability to pass signed identity context to end applications.
-
Computer Networks: Myths, Missteps, and Mysteries - Radia Perlman at QCon London
Radia Perlman, EMC Fellow and one of the pioneers of early network design, presented a keynote at QCon London that explored how networking protocols and technologies have evolved to become today’s Internet. In her talk, she responded to some of the common questions (e.g. Why do we need both Ethernet and IP?) and explored how things might have looked if they were designed today.
-
Traffic Protocol Analyzer Wireshark Gets its Own Foundation
The popular open-source protocol analyzer Wireshark has a new permanent home in the form of the Wireshark Foundation, which should provide the means for its further, long-term evolution, says Sysdig, which took over as the project's main sponsor in 2022.
-
Google Cloud Announces Curated Detection in Chronicle SecOps Suite
Google Cloud recently announced general availability of curated detections as a part of Chronicle SecOps Suite. Using the out-of-the-box threat analytics, security operations teams can now detect cybersecurity threats proactively and take relevant actions.
-
Microsoft Previews Azure Firewall Basic for Small-Medium Businesses
Microsoft recently released the public preview of Azure Firewall Basic for small-medium businesses (SMBs), providing enterprise-grade security at an affordable price. The company offers the Basic SKU as it sees SMBs as particularly vulnerable to budget constraints and gaps in specialized security skills.
-
Multi-Factor Authentication Fatigue Key Factor in Uber Breach
Earlier this week, Uber disclosed that the recent breach it suffered was made possible through a multi-factor authentication (MFA) fatigue attack where the attacker disguised themselves as Uber IT.
-
AWS Firewall Manager Supports Palo Alto Networks Cloud Next Generation Firewalls
AWS recently announced that Firewall Manager supports Palo Alto Networks Cloud Next Generation Firewalls (NGFW). Palo Alto Networks partnered with the cloud provider to offer a managed firewall service designed to simplify securing AWS deployments.
-
Microsoft Brings Private Link Support in Preview to Azure API Management
Recently, Microsoft announced the preview of Azure Private Link support for Azure API Management service, a fully-managed service that enables customers to publish, secure, transform, maintain, and monitor APIs.
-
Cloudflare Report Highlights Staggering Increase in DDoS Attacks in Q4 2021
In keeping with its custom of releasing a quarterly trends report on DDoS attacks, Cloudflare has just published its new findings for Q4 2021, which show a 95% increase in L3/4 DDoS attacks and record-breaking levels of Ransom DDoS attacks.