Discover Keyhole Software’s expert Java consulting services. From custom application development and project augmentation to training and advisory, our U.S.-based Java practitioners deliver enterprise-grade solutions tailored to your business needs. Learn more!
Orchestration – Kubernetes, OpenShift, and Cloud Foundry
Home→Search ResultsOrchestration Big Ideas Kubernetes, OpenShift, and Cloud FoundryThis video discusses platform orchestration from a broad scope. Specifically, Principal Consultant Jaime Niswonger takes a technology-agnostic look at the “big ideas” integral to platform orchestration for the enterprise. He introduces three popular orchestration platforms, Kubernetes, OpenShift, and Cloud Foundry, and discusses scaling container deployments in the enterprise. RecordingThis one-hour video was …
OWASP Dependency Check for Vulnerability Reporting
TL;DR: Add OWASP Dependency-Check to your build process to get insight into your dependency vulnerabilities.
Recent major data losses and security vulnerabilities in open source frameworks *(and the applications that use them)* have caused the companies that use those frameworks to have elevated concerns regarding vulnerabilities. The elevated awareness is for good reason, too. After all, no one wants to be the next one to lose sensitive data, be the punching bag of others, or be the example of what *not* to do security-wise.
If you happen to be in a group that doesn’t have any open source vulnerability reporting, OWASP Dependency-Check may be your short-term answer to get at least something in place. Adding OWASP Dependency-Check into your build process takes a relatively low effort. Other than not having the technology that stack Dependency-Check can help you with, there isn’t a reason not to at least add Dependency-Check to give a little insight into your open source dependencies.
The following parts will help you get Dependency-Check integrated into your Java project’s build process. The instructions will be adaptable to the other technologies Dependency-Check supports, like Gradle or JavaScript. Dependency-Check is also available as a command line tool for your favorite OS. In this example, I’ll use a Java project with Maven….
Could the Equifax Hack Have Been Prevented by a Microservices Architecture?
When I heard that the Struts Open Source framework played a role in the recent Equifax hack, I wanted to do some research to understand how it happened. Struts is a commonly-used Java framework that I have applied in the past. And I’m not alone in that: it is reported that in 65% of Fortune 500 companies currently implement Struts in some way.
So, I did a little digging and performed a thought experiment asking myself the following question: “If Equifax had a pure-play Microservices Architecture in place, would it have solved the problem?”
Component-Based Java Frameworks
Attention: The following article was published over 13 years ago, and the information provided may be aged or outdated. Please keep that in mind as you read the post.I have recently had the opportunity to work on an application utilizing ICEFaces ICE components and have been learning more about the product. This was the first time I have had the …
