Do you want to get started with performance testing, but think that it is unimportant or that it won’t fit into your process? This 5-minute ignite talk provides an introduction to performance testing and some of the potential negative consequences of releasing a system with poor performance. In it, I provide an overview of six […]
Unity3D, the popular game development platform, began offering a ton of services a while back, but a lot of independent developers I’ve met haven’t used them. This makes sense, as integrating things like Ads and Analytics probably won’t become relevant in small projects until the second 90%. However, one service that everyone should make use […]
For decades, software security organizations and those that assure security have built processes and procedures around waterfall software development practices. This has often led to security testing being “bolted on” at the end of the process. In addition, many organizations have seen the rise of mindless information security assurance, whereby engineers avoid assessing, understanding, or […]
In my last two posts, I talked about different options for securing your network traffic, and how to setup a machine to pass network traffic through. As promised, this last post in the series will walk you through some of the more complex steps in configuring the last 3 options. Please note, that each of these […]
Jacksonville, FL (May 26, 2017) — TechWell Corporation, an industry leader in software improvement conferences, training, and online communities, has announced that Jeffery Payne will be the new technical editor of the AgileConnection online community. AgileConnection is growing in popularity and in members as one of the largest online sources for articles, interviews, and a […]
On my current project, my team is using FreeIPA to implement Single Sign-On (SSO) for all the employees at Coveros. FreeIPA is an open-source security solution for the Linux operating system which provides account management and centralized authentication, similar to Microsoft’s Active Directory. It is built on top of multiple open source projects such as […]
This is part 2 of my blog series about Nexus Lifecycle. If you missed my first part you can find by clicking this link. Here I will talk about how to properly roll out Nexus Lifecycle in an Enterprise Environment based on a past experience. The first thing you need to do is to make […]
I know what you’re thinking…what happened to the 2016 release? Well, 2016 was an interesting year, and unfortunately we weren’t able to get out a mid-year release, and our Q4 release got pushed to Q1 of this year. But, finally, an updated version of SecureCI™ is here! So, what can you expect from this release? Upgrades First and […]
For a variety of reasons, a lot of companies are moving to an Agile, DevOps Culture, Continuous Integration and Delivery/Deployment (CI/CD) model. These transformations rely on a variety of tools, including open source. A lot of organizations also use open source tools and libraries to develop their applications and in order to ensure security, these […]
I recently wrote several blog posts about setting up a DevOps pipeline, and it was working great for our code. However, recently, I ran into an issue. My perfectly written and tested code somehow introduced a bug into our production environment! Luckily, we caught this issue quickly, and it was a relatively easy fix. So, I fixed the code, […]
