App Development Archives

OWASP API Security Risks: What’s Ahead

By Balaji Radhakrishnan, PMP, CISSPPosted on September 18, 2023September 18, 2023

In this final blog in his series on OWASP API Security Top Ten, Bala takes a look at what’s likely ahead for API and application developers.

2023 OWASP Top Ten API Security Risks: Unrestricted Resource Consumption, Unrestricted Access to Sensitive Business Flows and Security Misconfiguration

By Balaji Radhakrishnan, PMP, CISSPPosted on September 11, 2023September 26, 2023

In part two of this series on the updated OWASP Top Ten API Security risks, Bala examines three more of the Top Ten: Unrestricted Resource Consumption, Unrestricted Access to Sensitive Business Flows and Security Misconfiguration.

2023 OWASP Top 10 API Security Risks: Broken Authorization and Authentication

By Balaji Radhakrishnan, PMP, CISSPPosted on August 28, 2023August 28, 2023

In this first piece of our three-part series, we’ll examine the top three risks on the 2023 list: Broken Object Level Authorization, Broken Authentication and Broken Object Property Level Authorization.

The Open Web Application Security Project

By Bill Oakes, CISSPPosted on August 21, 2023August 21, 2023

This blog reviews the OWASP, the Top Ten and API Security Top Ten, and opens the door for an upcoming series on the latter two.

OpenTelemetry and API Gateways: Creating a Path for Future App Observability

By Francois LascellesPosted on June 19, 2023June 19, 2023

This 3rd in a 3 part series furthers the discussion on OpenTelemetry and API Gateways can leverage Otel for new levels of observability for APIs.

How OpenTelemetry is Transforming Observability

By Gary VermeulenPosted on June 5, 2023June 5, 2023

In this second of a three part series, Gary discusses OpenTelemetry and it’s business benefits and advantages.

OpenTelemetry: A Game-Changing Standard for Application Visibility

By Gary VermeulenPosted on May 15, 2023May 15, 2023

Many enterprises are unaware that their current infrastructure can work with OpenTelemetry. OpenTelemetry is the new cloud-native standard for application observability. This article is the first of a three-part series that explores the technology’s business benefits and advantages.

GraphQL Schemas – From Design-time Introspection to Runtime Content Validation

By Francois LascellesPosted on September 20, 2022September 20, 2022

This blog takes a look at GraphQL from a security perspective, and how to design a schema that meets CSO requirements.

Anti-patterns in Microservices (Don’t Do These)

By Adam DuVanderPosted on June 30, 2022June 30, 2022

Microservices are a popular approach to software architecture that aim to break up monolithic code into maintainable chunks. These discrete chunks allow for continuous delivery of a service while developing on top of what is in production. That flexibility is exciting in an agile environment, but rushing into deploying your code as a suite of microservices can put you at risk of incorporating anti-patterns that may cause significant problems down the line. In this blog, Adam discusses four common pitfalls as you start building your own microservices.

What are API Anti-Patterns?

By Adam DuVanderPosted on June 21, 2022June 21, 2022

Software design patterns are the solutions used to tackle common software development problems. Design Patterns aren’t strictly required for running code but they are essential to avoiding problems in your code. In this article, Adam takes a look at the other side – anti-patterns – a sneaky but common poor software development technique.