Posts

Showing posts with the label AppSecurity

Observability Done Right: Best Practices and Anti-Patterns for Effective System Monitoring

Image
  WHAT Observability is a concept that refers to the ability to gain insights into the behavior and performance of complex systems. In the context of software engineering, observability involves the collection, analysis, and visualization of data from software applications, infrastructure, and other components of a system. In the animal kingdom, observability plays a critical role in survival, allowing animals to monitor their surroundings, detect threats, and find food. Dolphins use echolocation to observe their surroundings. They emit high-frequency sounds that bounce off objects, allowing them to create a 3D map of their environment. Thanks for reading Knowledge Cafe! Subscribe for free to receive new posts and support my work. Subscribed WHY In today's era, architectures are becoming increasingly large, complex, and fast-paced due to the faster development and deployment of software by distributed teams with the help of DevOps, continuous delivery, and agile development methodo...

gRPC or REST: Choosing the Right API Design for Your Needs

Image
  There are several advantages of gRPC over REST APIs: Performance: gRPC uses a binary format for data serialization, which is more efficient than the text-based format used by REST. This makes gRPC faster and more suitable for use in high-performance environments. Bi-directional streaming: gRPC allows for bi-directional streaming of data, which means that both the client and the server can send streams of data to each other. This is not possible with REST, which is only able to send data in one direction (from the client to the server). Interoperability: gRPC supports multiple programming languages, so it is easier to create cross-language APIs. REST APIs are limited to the capabilities of the HTTP protocol, which may not be sufficient for certain use cases. Simplicity: gRPC uses a simple HTTP/2 protocol and provides code-generated stubs to make it easier for clients to use the API. In contrast, REST APIs require clients to construct URLs and understand the format of the URLs in o...

App Security | OWASP 2021- New Entries

Image
  What is OWASP? OWASP (Open Web Application Security Project) is an international non-profit organization dedicated to improving software security through open source initiatives and community education. OWASP Supports the building of impactful projects, Develops & nurtures communities through events and chapter meetings worldwide and Provides educational publications & resources What is OWASP top 10? The OWASP Top 10 is a regularly-updated report outlining security concerns for web application security, focusing on the 10 most critical risks. read more in detail at official site:  https://owasp.org/Top10/ Which are new entry in 2021 list of top 10 1. Insecure design: “insecure design” are those vulnerabilities that exist due to lack of security implementation in an application at the time of development. When security best practices are not considered during application design phase it might result in this vulnerability. Secure design of an application contains the e...