Article
In today's digital economy, APIs have become the backbone of the financial services industry. They act as critical components, enabling seamless interactions between financial systems, applications, and third-party services. These interactions range from payment processing to data sharing, playing a vital role in the functionality and efficiency of modern financial services. However, with this increased reliance on APIs comes a heightened need for stringent security measures. The financial sector, being a prime target for cyber threats, requires robust security protocols to protect sensitive data, particularly cardholder data, which is where the Payment Card Industry Data Security Standard (PCI DSS) V4.0 comes into play.
PCI DSS V4.0 marks a significant shift in the landscape of financial data security. Building upon its predecessor, V3.2.1, this latest version introduces a raft of new and updated requirements aimed at better protecting cardholder data in an increasingly complex digital world. For organizations handling this data, particularly those leveraging API technology, understanding and implementing these changes is not just about compliance; it's about safeguarding their future.
Automated Technical Solutions for Web-Based Attacks (Requirement 6.4.2):
January 29, 2024 | 5 min read
Telepresence
Personal intercepts, multiple connections, multiple ports, and more!
TLDR: The Telepresence Intercept Specification now allows for multiple connection definitions that specify which one to use for each intercepted workload. Multiple namespaces can be intercepted simultaneously, and/or colliding ports on localhost can be routed using separate networks.
January 26, 2024 | 7 min read
Kubernetes
In the rapidly evolving landscape of cloud computing, Kubernetes has emerged as a pivotal force in container orchestration, revolutionizing how applications are deployed, scaled, and managed. As Kubernetes environments grow in complexity, the challenges in efficiently managing resources, ensuring optimal performance, and maintaining system health become more challenging.
This article will look at the various Kubernetes metrics, their significance, and their use cases to optimize resource usage, identify problems, and implement auto-scaling techniques. Understanding these metrics is key to unlocking the full potential of your Kubernetes deployments.
What are the Benefits of Kubernetes Monitoring?
January 23, 2024 | 12 min read
Article
On the latest Livin' On the Edge podcast episode, I interviewed the CEO of Robusta, Natan Yellin, about the evolution of DevOps, throwing AI into the mix, and debunking the DevOps statement of "You Build it, You Run it."
The 'You Build It, You Run It' Dilemma
January 18, 2024 | 5 min read
API Gateway
API development has skyrocketed in recent years, propelled by digital transformation and the critical role APIs play in both mobile apps and IoT. Because of this expansion, API security has become a primary priority.
In this article, we will learn about REST APIs, their security, and why they are important. We will also cover how to protect your REST API and common API threats.
What is a REST API?
January 16, 2024 | 11 min read
API Development
On the latest Livin' On the Edge podcast episode, I interviewed Stoplight CTO and host of the API Intersection podcast, Jason Harmon. With over two decades in the industry as a leader in the API design space, Jason brought many valuable insights to the table on the importance of intentional platform design, the need to slow down for sustainable growth, and the role of APIs in driving innovation. Tune in or catch the main takeaways below.
January 9, 2024 | 5 min read
