Edge Stack API Gateway, API Gateway Security
APIs provide the foundation for delivering digital and automation efforts. It has never been easier to construct and deploy APIs at scale, allowing businesses to build what they need when they need it. API governance guarantees that API quality and security are constant across the design and deployment processes. However, we frequently find API governance as a barrier to product delivery. Without effective governance, the APIs we construct and utilize to build a modular company become the weak link that exposes data.
In this article, we will cover what API governance is, how it may help your organization, how to govern APIs and some API security best practices for API governance.
What is API Governance, and How do You Best Govern APIs?
February 6, 2024 | 10 min read
Article
Podcast Interview with Xavier Portilla Edo, Infrastructure Team Lead at Voiceflow
On the latest Livin' On the Edge podcast episode, I interviewed Xavier Portilla Edo, Cloud and Infrastructure Team Lead from Voiceflow, a Canada-based company focused on a collaborative conversation design platform where conversational AI product teams design, test, and ship chat and voice assistants.
"I'm working here as a Head of Cloud, and my team is managing everything that is related to the Cloud," said Xavi. "Managing all the terraform code, managing the CI/CD pipelines... everything related to data modeling and all that stuff that is under my team, so it’s critical that we create a developer-friendly environment."
February 1, 2024 | 6 min read
Article
In today's digital economy, APIs have become the backbone of the financial services industry. They act as critical components, enabling seamless interactions between financial systems, applications, and third-party services. These interactions range from payment processing to data sharing, playing a vital role in the functionality and efficiency of modern financial services. However, with this increased reliance on APIs comes a heightened need for stringent security measures. The financial sector, being a prime target for cyber threats, requires robust security protocols to protect sensitive data, particularly cardholder data, which is where the Payment Card Industry Data Security Standard (PCI DSS) V4.0 comes into play.
PCI DSS V4.0 marks a significant shift in the landscape of financial data security. Building upon its predecessor, V3.2.1, this latest version introduces a raft of new and updated requirements aimed at better protecting cardholder data in an increasingly complex digital world. For organizations handling this data, particularly those leveraging API technology, understanding and implementing these changes is not just about compliance; it's about safeguarding their future.
Automated Technical Solutions for Web-Based Attacks (Requirement 6.4.2):
January 29, 2024 | 5 min read
Telepresence
Personal intercepts, multiple connections, multiple ports, and more!
TLDR: The Telepresence Intercept Specification now allows for multiple connection definitions that specify which one to use for each intercepted workload. Multiple namespaces can be intercepted simultaneously, and/or colliding ports on localhost can be routed using separate networks.
January 26, 2024 | 7 min read
Kubernetes
In the rapidly evolving landscape of cloud computing, Kubernetes has emerged as a pivotal force in container orchestration, revolutionizing how applications are deployed, scaled, and managed. As Kubernetes environments grow in complexity, the challenges in efficiently managing resources, ensuring optimal performance, and maintaining system health become more challenging.
This article will look at the various Kubernetes metrics, their significance, and their use cases to optimize resource usage, identify problems, and implement auto-scaling techniques. Understanding these metrics is key to unlocking the full potential of your Kubernetes deployments.
What are the Benefits of Kubernetes Monitoring?
January 23, 2024 | 12 min read
Article
On the latest Livin' On the Edge podcast episode, I interviewed the CEO of Robusta, Natan Yellin, about the evolution of DevOps, throwing AI into the mix, and debunking the DevOps statement of "You Build it, You Run it."
The 'You Build It, You Run It' Dilemma
January 18, 2024 | 5 min read
