Recently, a new specification reached version 1. The Cloud Native Application Bundle is designed to help take application packaging, particularly in the serverless/cloud world, to the next level. It is designed to compliment existing tool sets such as Terraform and Docker. This snip-it from the Porter FAQ is pretty telling: Porter is an implementation of the CNAB specification. Cloud Native Application Bundles is a different way of answering “_How do I reliably, securely deploy an application and its infrastructure?
I am currently studying for the AZ500 exam which focuses on Microsoft Azure Security Technologies. This is the first blog post in that series. The first major section in the AZ500 exam is focused on managing identity and access. The goal of this post is to provide a basic understanding of what is Azure active directory. What is Azure Active Directory? Azure Active Directory (Azure AD) is a cloud-based SaaS platform designed to help companies manage identities and access across numerous on-premises and cloud based services.
On August 12, 2019, the Canadian federal government announced “CyberSecure Canada”, a voluntary certification program that aims to raise the cybersecurity baseline among Canadian small and medium enterprises (SMEs). The program requires Canadian SMEs to implement baseline security controls that have been selected to provide the greatest amount of protection with the least amount of burden. SMEs that demonstrates compliance to an accredited certification body will be granted a two-year certification that is intended to provide an easy way for customers, investors, partners and suppliers to know that the certified business has performed the basics to reduce their cyber risk.
I’m sorry for the click-bait title, but this article is written just for you. Yes you! Why? Because you’re on this page. Most likely you’ve googled “Reasons to Use WordPress,” “Why should I use WordPress” or “Does WordPress Really Cure Cancer?” and you ended up here. Which means, you’re thinking about using WordPress for your website. And why wouldn’t you consider it? It is used by 33% of all websites.
USB has always been a security concern. A malicious device that has been plugged into a USB port could impersonate a phantom keyboard and log all your keystrokes. Another popular exploit was to make use of the Windows autorun feature and have a storage device deliver a software exploit payload. I could go on, but you have heard it all before. Thunderbolt The Thunderbolt 3 port is a recent addition to PCs.
In the last post, we discussed the concepts behind the valet key pattern. In this post, I will walk through how to perform this operation on AWS. In AWS, in general, all bucket access is controlled by IAM. AWS also has the concept of signed urls, which allow someone to share a URL (very similar to SAS tokens in Azure). We will look at both techniques in this post.