• submit to reddit
Jim Bird06/07/13
898 views
0 replies

Choosing Between Pen Tests and Secure Code Reviews

Secure Code Reviews and application Pen Tests are both important practices in a secure software development program. But if you could only do one of them, if you had limited time or limited budget, which should you choose?

Jim Bird06/06/13
1714 views
0 replies

Choosing Between a Penetration Test and a Secure Code Review

Pen testing and code reviews are very different things – they require different work on your part, they find different problems and give you different information. And the cost can be quite different too.

John Cook06/06/13
533 views
0 replies

Seven Dogmas of Category Theory

Although category theory is all about general patterns, it’s hard to learn what the general patterns of category theory are...

Abhishek Kumar06/06/13
932 views
0 replies

Testing Chaos with Automated Configuration Management Solutions

With so many cogs collaborating in the infra-machine, a check on their collaboration seems rather mandatory -- like any other integration test for your in-house managed service. After all that was key idea behind having automated configuration management itself.

Simon Brown06/06/13
715 views
0 replies

Features vs Behavior

I've recently had a bug I raised with a third party software supplier downgraded from high to low importance. No one likes having their bugs downgraded (it probably shows you what a nerd I am by taking this personally) but what surprised me was the reason.

Łukasz Budnik06/06/13
757 views
0 replies

10 More 'Most Useful' iPhone Tips (Part 2)

This post is a continuation of my 3 previous posts. So let's get rolling with the next part, restoring application's state.

Timothy Bish06/06/13
935 views
0 replies

Win ApacheMQ "Instant" eBook

Learn something new in an Instant! A short, fast, focused guide delivering immediate results. Learn how to use the JMS API. Explore advanced messaging features in ActiveMQ. And useful information on common pitfalls new developers often encounter

Singaram Subramanian06/06/13
1398 views
0 replies

Multiple WSDLs for Generating JAX-WS artifacts w/ CXF’s Maven Plugin

Each element corresponds to a WSDL for which we need to generate artifacts. Check out my XML snippet below...

Christopher Taylor06/06/13
1682 views
0 replies

Yahoo is the Latest to Show Us There's No Place to Hide

Gone, it seems are the days of privacy alongside privilege, victim of the digital revolution that allows far greater transparency.

Mike Cottmeyer06/06/13
3193 views
0 replies

Thinking Together for Release Planning

I’ve been noodling on the phrase “Thinking Together.” Thinking Together is one aspect of the mindset that Product Owners need to embrace. I have been using this phrase with new Product Owners to explain why many Agile practices work.

Steven Willmott06/06/13
3810 views
0 replies

API Business Models

Guillaume Balas, our CMO, talked about API Business Models, about how to define your API business strategy based on your core business assets, and about how to enable new business models for your company by exposing and API. Here are some of the highlights of his talk...

Mitch Pronschinske06/06/13
2880 views
0 replies

DDD and SOA Pitfalls

Developers building a Service Oriented Architecture commonly run into pitfalls such as using too many web services or using the wrong ESB. These are just some of the tips from this short video.

David Shepherd06/06/13
1766 views
0 replies

Testing for the API Economy

Creating integrations is hard, but testing them is even harder. Here are the hard-won best practices that we’ve developed which you can apply to your integrations.

Isaac Taylor06/06/13
3130 views
0 replies

Quick Design Pattern Review - Abstract Factory

There are a few drawbacks with this design. If you find yourself having to add new types (via new methods) to the Abstract Factory class, you will have to add this same method to all concrete Factory classes as well.

Arthur Charpentier06/06/13
1673 views
0 replies

Risk Theory, Parallel Computing with R, and More Data Links

In this edition of Arthur Charpentier's data link roundup, we dive into an "esoteric branch of actuarial theory," compare snow, multicore and (standard) lapply with R, discover how cheating can be an effective learning strategy, and more.