Tag Archives: Recommended Reading

[Recommended Reading] Microservices

Source: Microservices Wikipedia

“A ‘microservice’ is a software development technique—a variant of the service-oriented architecture (SOA) architectural style that structures an application as a collection of loosely coupled services. In a microservices architecture, services are fine-grained and the protocols are lightweight. The benefit of decomposing an application into different smaller services is that it improves modularity and makes the application easier to understand, develop, test, and more resilient to architecture erosion. It also parallelizes development by enabling small autonomous teams to develop, deploy and scale their respective services independently. It also allows the architecture of an individual service to emerge through continuous refactoring. Microservices-based architectures enable continuous delivery and deployment. Read more…

Image source.

Advertisements

Leave a comment

Filed under General, InfoSec, Recommendations, Site Reliability Engineering, WorldOfSecDevOps

[Recommended Reading] Feature toggle

Source: Feature Toggle Wikipedia

“A feature toggle (also feature switchfeature flagfeature flipperconditional feature, etc.) is a technique in software development that attempts to provide an alternative to maintaining multiple source-code branches (known as feature branches), such that a feature can be tested even before it is completed and ready for release. Feature toggle is used to hide, enable or disable the feature during run time. For example, during the development process, a developer can enable the feature for testing and disable it for other users. Read more… “

Image source.

Leave a comment

Filed under General, InfoSec, Recommendations, Site Reliability Engineering, WorldOfSecDevOps

[Recommended Reading] Nagios

Source: Nagios Wikipedia

Nagios, now known as Nagios Core, is a free and open sourcecomputer-software application that monitorssystems, networks and infrastructure. Nagios offers monitoring and alerting services for servers, switches, applications and services. It alerts users when things go wrong and alerts them a second time when the problem has been resolved. Read more… “

Image source.

Leave a comment

Filed under General, InfoSec, Recommendations, WorldOfSecDevOps

[Recommended Reading] Advanced Encryption Standard

Source: Advanced Encryption Standard Wikipedia

“The Advanced Encryption Standard (AES), also known by its original name Rijndael, is a specification for the encryption of electronic data established by the U.S. National Institute of Standards and Technology (NIST) in 2001. Read more… “

Image source.

Leave a comment

Filed under General, InfoSec, Recommendations, WorldOfSecDevOps

[Recommended Reading] ATT&CK Matrix

Source: ATT&CK Matrix

“The ATT&CK Matrix for Enterprise provides a visual representation of the adversarial techniques described in the ATT&CK for Enterprise threat model. Tactic categories are listed on the top row individual techniques as cells underneath each tactic to denote that technique can be used to accomplish that particular tactic. Techniques can span multiple tactic categories signifying that they can be used for more than one purpose.” Read more…

Image source.

Leave a comment

Filed under General, InfoSec, Recommendations, WorldOfSecDevOps