How my site got hacked, and how you can learn from that

Detection I should have acted on the first signals more aggressively. But let’s talk about that later. Here is the story of my site being infected with malware, viewed by a professional cloud security expert. So I am going to Read more...

Agile development requires modern digital infrastructures

Agile development is all the fashion nowadays. Why is that and what kind of digital infrastructures does that require? Back in the old days, business software was primarily written to automate existing business processes. Those processes might change somewhat as Read more...

Cloud migration strategies and their impact on security and governance

Public cloud migrations come in different shapes and sizes, but I see three major approaches. Each of these has very different technical and governance implications. Three approaches Companies dying to get rid of their data centers often get started on Read more...

Are you a risk to your customers?

In the past weeks I have been talking to a number of small software providers. Most software these days is no longer shipped (CD-ROMs are really oldskool, aren’t they?), but is delivered as a service over the internet. These software Read more...

First CCSP delivery, and some thoughts on oldskool and newskool IT thinking

A few weeks ago I ran my first CCSP training session (I did more than 40 CCSK sessions before this). As of this writing, the attendants still have to do the exam. Apparently the exam slots are booked a few Read more...

How the NSA hacks you, and what cloud can do about it

At the recent Usenix Enigma 2016 conference, NSA TAO chief Rob Joyce explains how his team works. By the way, TAO means Tailored Access Operations, which is a euphemism for hacking. See the full presentation here.  Rob explains their methods, Read more...

Assuring your customer of your service quality

Do you deliver your software product as a service? Or do you offer another IT service online? Then you probably have found that your customers really need assurance that your service is good enough for their purposes. It has to Read more...

How the internet is changing our thinking

The internet changes the way we think, Nicholas Carr writes in “The Shallows”. Simple examples can be found in what we decide to lookup instead of memorize, such as phone numbers. At the same time it still makes sense to Read more...

Cloud Security 101

Cloud Security 101 is a one page overview of the basic things you need to know about cloud security. On the right you see the thumbnail version. Just register below (or on the right if that does not work) for Read more...

Serverless computing is the final frontier in scalable computing

Warning: this post is forward looking and does not give easy answers. Cloud computing continues to enable innovation in the way we develop and deploy software. Service Oriented Architecture (or SOA) is a software development paradigm for breaking up large Read more...