InfoQ Homepage Security Content on InfoQ
-
Mike Amundsen on API Design, Governance, and Lifecycle Management
Mike Amundsen talks about API management, versioning, and discovery. He compares RESTFul and CRUD-style APIs, discusses the notion of 'affordance,' and introduces hypermedia APIs. He examines documentation modelling frameworks for APIs - like Swagger - and also provides his thoughts on API governance, OAuth 2.0, and web single sign-on.
-
Martijn Verburg Talks About jClarity, Adopt a JSR and Java Security
Martijn Verburg discusses his new start-up jClarity, which offers performance tooling for the Cloud. He also provides an update on the Adopt a JSR and Adopt OpenJDK programs.
-
Ward Cunningham on the Appeal of OOP and Dynamic Languages, Federated Wiki
Ward Cunningham talks about the continuing appeal of OOP and dynamic languages, asynchronous programming, and much more. Also: Ward explains the ideas behind his latest project Federated Wiki.
-
Bob Lee on Java's Future, Lambdas, DI with Guice vs Dagger, Java and Ruby at Square
Bob Lee explains the popularity of Java, future language features like Lambdas, DI with Guice vs. the Dagger framework, the role of Java vs. Ruby at Square, hiring at Square, security and much more.
-
Robert Winch on Spring Security and Multi-Tenant Applications on the Cloud
In this interview recorded at QCon NY 2012 Conference, Spring Security project lead Robert Winch discusses the new features of Spring Security 3.1 version and design strategies for multi-tenant cloud applications.
-
Ganesh Prasad on SOA and Dependencies, Identity Management
Ganesh Prasad explains how the contribution of SOA is the management of dependencies between systems, how SOA is a design aspect and not a technological one, and much more.
-
Rick Hudson on Parallel JavaScript (RiverTrail)
In this interview, Intel's Rick Hudson talks about Parallel JavaScript (formerly known as "RiverTrail"), a new parallel programming API designed specifically for JavaScript. Rick describes RiverTrail and its vision of how to leverage current and future parallel hardware from within the browser and JavaScript.
-
Graham Lee on Application Security, Sandboxing on OS X, Mobile Application Development
Graham Lee discusses how to design and write secure (mobile) applications, the concept of sandboxing in general and on OS X, Objective-C and Smalltalk, and much more.
-
Dennis Stevens on Value Management in Agile Projects
Dennis Stevens discusses ways to identify and focus on business value and risk mitigation in Agile projects. As a contributor to the Agile Extension to the BABOK, and in his work on the ICAgile Business Analysis & Value Management area, and how to identify, prioritize and mitigate risk in software development projects.
-
Future of Web Application Security, with Tyler Close
As web applications have evolved away from the old client-server model, so have the security threads. In this interview Tyler Close talks about common security challenges and how these are affected by the new HTML5 APIs and Ecmascript 5.
-
ECMAScript 5, Caja and Retrofitting Security, with Mark S. Miller
Mark S. Miller talks about the security considerations of JavaScript and how they are dealt with in ECMAScript 5 and the Caja project. He also mentions issues that have to do with HTML5 and compares the security characteristics of other languages like Java and Scheme.
-
REST and the Web as a Platform, with Subbu Allamaraju
In this interview, Subbu Allamaraju talks about real life issues of RESTful architectures. He also describes a pragmatic approach of adopting the Web as an integration platform and shares his opinion on OAuth.
