Scott Lowe

FEBRUARY 17, 2023

Over the last few weeks, I’ve been collecting articles I wanted to share with readers on major areas in technology: networking, security, storage, virtualization, cloud computing, and OSes/applications. This post on Cedar—a new policy language developed by AWS—is an interesting read.

Programming 96

Programming Policies Network Cloud 96

Dataconomy

JUNE 27, 2023

Cyber hygiene encompasses a set of practices and steps that computer and device users can easily incorporate into their daily routines to ensure the health of their digital systems and enhance online security. Enable two-factor authentication Two-factor authentication adds an extra layer of security to your accounts.

Malware 68

Malware Software Software Financial 68

Dataconomy

AUGUST 8, 2023

Developed under the auspices of the Trusted Computing Group (TCG), this technology emerges as a shield against the tumultuous tides of cyber threats, reshaping the security paradigm. This technology employs a distinct and inaccessible encryption key to achieve its objectives.

Hardware 36

Hardware Security Storage Software 36

Galido

JUNE 30, 2016

VMI stands for Virtual Mobile Infrastructure and basically, it provides end users with a highly effective and an efficient way to have access to delicate mobile applications and information without much hassle. It creates virtual versions of mobile applications and sends them to a vast collection of devices.

Mobile 81

Mobile Virtualization Operating Systems Applications 81

Scott Lowe

JANUARY 6, 2023

Yuchen Wu and Andrew Hauck share the story of Pingora , a Rust-based HTTP proxy developed by and currently in use at Cloudflare. Using Visual Studio Code’s Remote Containers extension is a handy way to keep your development environment contained—no pun intended!—away —away from the host system.

Network 74

Network Vmware Cloud Operating Systems 74

Dataconomy

MARCH 21, 2023

In the world of modern computing, containers as a service (CaaS) has emerged as a powerful and innovative approach to application deployment and management. Containers are a form of virtualization that allows for the efficient and isolated packaging of software applications and their dependencies.

Data 28

Data Applications Tools Resources 28

Dataconomy

MARCH 21, 2023

In the world of modern computing, containers as a service (CaaS) has emerged as a powerful and innovative approach to application deployment and management. Containers are a form of virtualization that allows for the efficient and isolated packaging of software applications and their dependencies.

Data 28

Data Applications Tools Resources 28

ForAllSecure

APRIL 26, 2023

How to Protect Against Social Engineering Attacks Organizations can protect themselves against social engineering attacks by educating employees about the risks, enabling multi-factor authentication, and implementing security policies that require verification of any requests for sensitive information or actions.

System 40

System Malware How To Engineering 40

Dataconomy

OCTOBER 19, 2023

This unsettling development has left many families anxious about their data security. They have developed a dedicated hotline line to help concerned parents. Enable Two-Factor Authentication (2FA): Many online services offer 2FA, which adds an extra layer of security. This hotline is open from 6 a.m.

Data 45

Data Software Software Operating Systems 45

CTOvision

MARCH 17, 2015

Outside of the more notable and talked about features—friendlier UI, improved device manageability including MDM, easier operating system deployment (OSD), universal applications, and a customizable store portal for organizations—Windows 10 comes with something even more important - deeper security.

Windows 150

Windows Enterprise Enterprise Security 150

Dataconomy

FEBRUARY 5, 2024

” As one of Apple’s most ambitious undertakings, the Vision Pro has been a year in development, loaded with groundbreaking technology, including the introduction of a new operating system, visionOS, which alone could justify its significant price tag.

Apple 78

Apple 3D Video Virtualization 78

Phil Windley

NOVEMBER 11, 2020

DIDComm is more than just a way to exchange credentials, it's a protocol layer capable of supporting specialized application protocols for specific workflows. The exchange of DIDs to form a connection with another party gives both parties a relationship that is self-certifying and mutually authenticated. technologies.

Internet 80

Internet Authentication Applications Security 80

Scott Lowe

MARCH 1, 2019

VyOS is an open source Linux-based network operating system.). James Hamilton is back with a more in-depth look at the components of the AWS Nitro System. Part 1 covers auto-unsealing Vault ; part 2 covers authenticating to Vault using instance metadata ; and part 3 discusses authenticating to Vault using an IAM user or role.

Operating Systems 60

Operating Systems Authentication Network Open Source 60

Scott Lowe

NOVEMBER 30, 2018

Troy Hunt has a good article on security measures other than just passwords , explaining some of the differences between multi-factor authentication and multi-step authentication (for example). Operating Systems/Applications. Highly recommended reading. Cloud Computing/Cloud Management.

Vmware 60

Vmware Authentication Virtualization Storage 60

SecureWorld News

APRIL 24, 2023

Keeping software and operating systems up to date, using security software, and being careful when opening email attachments or clicking links can help avoid malware. Ensuring the crypto algorithm is compatible with the systems and applications that will utilize it is also vital. Do not forget that security is a process.

Disaster Recovery 78

Disaster Recovery Security Malware System 78

Kitaboo

FEBRUARY 20, 2020

A software development kit or SDK is essentially a set of tools that provide a developer with the ability to build custom apps which can either be added on or connected to another program easily. SDKs allow developers to develop custom eBook apps for a specific platform. KITABOO SDK.

eBook 109

eBook How To Adobe Mobile 109

Kitaboo

FEBRUARY 20, 2020

A software development kit or SDK is essentially a set of tools that provide a developer with the ability to build custom apps which can either be added on or connected to another program easily. SDKs allow developers to develop custom eBook apps for a specific platform. KITABOO SDK.

eBook 78

eBook How To Adobe Mobile 78

Scott Lowe

DECEMBER 27, 2019

Bruce Schneier writes about how some Chinese hackers are bypassing RSA software token authentication (the title is a bit more broad, implying other forms of two-factor authentication are affected, but the article focuses on attacks against the use of RSA software tokens). Operating Systems/Applications.

Open Source 60

Open Source Vmware Authentication Storage 60

GeekWire

SEPTEMBER 29, 2020

The Amazon One palm-scanning biometric ID system will roll out initially as an option for customers when they check in to two Amazon Go convenience stores in Seattle. Amazon Photo). Companies including Fujitsu and AEON Credit Service have also tested palm-scanning technologies for retail payment and checkout.

Retail 142

Retail System Company Security 142

Scott Lowe

NOVEMBER 22, 2019

I found this link in the serverless mullet architectures post, see the “Operating Systems/Applications” section below.). Marc Boorshtein has a write-up on authentication in Kubernetes identity management. Operating Systems/Applications. You’re welcome. (I

Architecture 60

Architecture Operating Systems Applications How To 60

Scott Lowe

MAY 27, 2022

Along those lines, one of their latest articles discusses how to achieve identity-based mutual authentication leveraging eBPF. Operating Systems/Applications. The state of virtualization on Apple Silicon hardware has seen a few developments in recent days and weeks. Programming. Virtualization.

Virtualization 79

Virtualization Storage Network Programming 79

Scott Lowe

JULY 13, 2018

Chris Hein shows how to use the Heptio Authenticator with kops to link Kubernetes cluster authentication to AWS IAM. Operating Systems/Applications. Lightroom is one of only a few applications that I keep around for macOS; this article gives me some alternatives. Cloud Computing/Cloud Management.

Load Balancer 60

Load Balancer Virtualization Authentication Tools 60

Scott Lowe

JUNE 18, 2021

Sonia Cuff provides a set of links for detailed instructions on setting up VPN access from macOS to Microsoft Azure with Azure Active Directory authentication. Hari Rana has a detailed discussion of security concerns regarding Flatpak (a packaging format for Linux applications). Operating Systems/Applications.

Vmware 60

Vmware Hardware Load Balancer Apple 60

Scott Lowe

MAY 17, 2019

This article by Bob Killen provides a good foundation of information on understanding Kubernetes authentication (AuthN) and authorization (AuthZ; implemented via RBAC). Operating Systems/Applications. Cindy Sridharan has a good article on health checks and graceful degradation in distributed systems.

Linux 60

Linux Dell Open Source Licensing 60

Scott Lowe

JULY 5, 2019

Lennart Koopmann provides a guide to Yubikey authentication in the real world. Operating Systems/Applications. I liked David Varnum’s article on applying essentialism to certifications and skills development. Cloud Computing/Cloud Management. That’s all for now. Enjoy your weekend!

Storage 60

Storage Hardware Open Source Vmware 60

Dataconomy

JUNE 6, 2023

As other big tech firms dove fully into the AR/VR space, Apple has been developing the headset, known as Apple Vision Pro mixed reality headset, for years. You access Vision Pro with your retina using a new authentication approach for analyzing your iris called Optic ID. Today marks the beginning of a new era for computing.

Apple 36

Apple Virtualization Education Operating Systems 36

Scott Lowe

APRIL 19, 2019

Many organizations prefer to use two-factor authentication (2FA) to help protect their systems. Key excerpt (for me) from this article was this statement: “…creating a viable, open source, hyperscale cloud software solution was against the best interest of the companies most heavily investing in OpenStack’s development.”

Open Source 60

Open Source Tools Policies Cloud 60

ForAllSecure

DECEMBER 2, 2021

You’ll want someone with years of pen testing experience, some one who knows the operating system like no other. So in general, an operating system that eventually allows you to gain more information about the context within which attack was made. Maybe your first concern is to make sure the company is functional.

Examples 52

Examples Operating Systems Course System 52

ForAllSecure

DECEMBER 17, 2021

As I produce this episode, there's a dangerous new vulnerability known informally as Log4Shell, it’s a flaw in an open source Java logging library developed by the Apache Foundation and, in the hands of a malicious actor, could allow for remote code injection. For example, the number of registrations in any system.

Open Source 52

Open Source Software Software Applications 52

ForAllSecure

APRIL 22, 2021

In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication. Problem is, MAC addresses are not great for authentication. Calderon: Paulino Calderon, I'm a senior application security consultant with Websec.

Internet 52

Internet Research Security Tools 52

ForAllSecure

APRIL 22, 2021

In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication. Problem is, MAC addresses are not great for authentication. Calderon: Paulino Calderon, I'm a senior application security consultant with Websec.

Internet 52

Internet Research Security Tools 52

CTOvision

DECEMBER 15, 2014

As technologists we found the questions informative and insightful and even inspiring (it was great seeing the government prove they are tracking developments in the tech world). Autonomic computing is a self-managing computing model named after, and patterned on, the human body’s autonomic nervous system.

Government 301

Government Artificial Intelligence Virtualization Big Data 301

ForAllSecure

NOVEMBER 18, 2021

So we include other telemetry that seeks to authenticate that the entity logging in is who they say they are. Without a basic ability to authenticate these characters, there’d be no drama, no romance, no tragedy. So that’s why you need multi factor authentication. Think about it. And important.

Authentication 52

Authentication System Examples Analysis 52

CTOvision

MARCH 27, 2017

The Smartcrypt Platform consists of an end-user application and a web-based manager console. It also includes a Software Development Kit (SDK) that is available in every major programming language. Once data is encrypted with the Smartcrypt application, the protection stays with the data everywhere it is used, shared, or stored.

Data 150

Data Policies Security Applications 150

Scott Lowe

MARCH 20, 2020

Chris Wahl touches on the topic of using GitHub personal tokens to authenticate to HashiCorp Vault. Operating Systems/Applications. Kornelis Sietsma looks at the options for working with multiple git identities on a single system. Career/Soft Skills. That’s all for now!

Linux 60

Linux Vmware Authentication Storage 60

Linux Academy

APRIL 11, 2019

Modern-day defense in depth strategies revolve around this same concept of making an attacker go through multiple layers of defense, with one key difference: we’re applying that to our computer systems. Identity is the process of assigning each individual user and system their own unique name. Domain 7: Physical Security.

Authentication 60

Authentication Security Disaster Recovery Firewall 60

Phil Windley

DECEMBER 28, 2020

airplanes, saws, and pencils) are nevertheless fairly narrow in their scope and application. The strength of such an identity system based security overlay is derived from the security supporting these bindings. Figure 2: Binding of controller, authentication factors, and identifiers in identity systems. Adaptability.

Internet 135

Internet Network Architecture Security 135