Tag: DZone Security Zone

Introduction: Modern Directories Meet Legacy Constraints As organisations strengthen security and centralise identity management, IBM MQ administrators increasingly integrate with enterprise LDAP directories such as Microsoft Active Directory or OpenLDAP. This enables authentication using corporate credentials and authorisation through LDAP…

Read more →

Beyond being a cliché, “artificial intelligence” and its associated automation technologies have driven major developments in security, signifying that important changes have occurred in this field. In the field of cybersecurity, artificial intelligence refers to systems that acquire data, trace…

Read more →

GitOps has a fundamental tension: everything should be in Git, but secrets shouldn’t be in Git. You need database passwords, API keys, and tokens to deploy applications, but committing them to a repository is a security incident waiting to happen.…

Read more →

The Gap Nobody Is Talking About The Model Context Protocol (MCP) is quickly becoming the de facto standard between AI agents and the tools they use. The adoption is growing rapidly – from coding assistants to enterprise automation platforms, MCP servers are replacing…

Read more →

While working with Data Analytics Systems, it is crucial to understand what is happening with the data, who can see specific data, which data we already have in the system, and which should be ingested. This is a typical business…

Read more →

Several structural shifts have changed how source code security is approached. Software teams now deploy continuously, build on cloud-native architectures, and often depend on third-party and open-source components. As a result, security vulnerabilities propagate faster and across wider blast radii. Security expectations…

Read more →

Let me tell you about the TLS termination system I built. We needed to support custom domains at scale, which meant HAProxy handling thousands of certificates and terminating TLS for high-traffic services. The old playbook was simple: decrypt at the…

Read more →

Why IAM Alone Is No Longer Sufficient for Cloud Security Organizations now process and move data differently because of modern, cloud-native platforms. Workloads such as Spark jobs, Kafka streams, Snowflake queries, and ML pipelines run continuously in short-lived environments. IAM…

Read more →

Executive Synopsis In the labyrinthine ecosystem of contemporary web applications, security misconfigurations emerge as the most insidious — yet paradoxically preventable — vulnerabilities plaguing digital infrastructure. This deep-dive exposition illuminates the shadowy realm of misconfigured CORS policies, absent security fortifications,…

Read more →

When designing a Java library, extensibility is often a key requirement, especially in the later phases of a project. Library authors want to allow users to add custom behavior or provide their own implementations without modifying the core codebase. Java…

Read more →

The GitOps community is deeply divided on secrets management. Some teams swear by Sealed Secrets, claiming Git should be the single source of truth for everything. Others argue that secrets have no business being in version control — encrypted or…

Read more →

AWS provides Lambda-based authorization capabilities for both API Gateway and AppSync, each designed to secure different API paradigms, highlighting their complementary roles and the confidence they inspire in combined security potential. Amazon API Gateway positions Lambda authorizers as a security…

Read more →

DPoP is one of the most exciting developments in the identity and access management (IAM) space in recent years. Yet many backend developers either have not heard of it or are unsure what it actually changes. In this article, I…

Read more →

Digital forensics relies on a chain of custody (CoC) to protect evidence. If a defense attorney can show that a log file was edited after collection, the case can fall apart. For the past 30 years, we’ve used standard hashing…

Read more →

Patient portals across mobile, web, and kiosk platforms have become the primary digital touchpoints between healthcare organizations and patients. The inception of these portals began with digitizing paper check-in forms and has evolved into full-fledged mobile and web applications that…

Read more →

What Is AWS IAM Identity Center? Think of IAM Identity Center (previously AWS SSO) as the gatekeeper to your cloud environment. Its role is to make sure only the right users or services gain access to your AWS resources, and…

Read more →

When Infrastructure as Code Stops Solving the Problem Infrastructure as Code changed the industry for the better. For the first time, infrastructure could be reviewed, versioned, and deployed with the same discipline as application code. Teams moved faster, environments became…

Read more →

In the era of generative AI and large language models (LLMs), the quality and accessibility of data have become the primary differentiators for enterprise success. However, many organizations remain trapped in the architectural paradigms of the past — centralized data…

Read more →

We are living in an era where software systems are growing in size with each passing day and often face a constant tension between the scale, performance, and security, where each of them is essential and non-negotiable. Security tools must…

Read more →

The architecture diagram shows clean rectangles. “Stateless API tier,” someone wrote in Lucidchart, then drew an arrow to a managed database. The presentation went well. Everyone nodded. Six months later, after the third incident where a rolling deployment dropped active…

Read more →