A recent service outage in same data centre over 24th & 25th December last and the Netflix service to customers was impacted. So what lessons can be drawn from this in relation to Design for Failure. I believe one of the lessons is that a good Design for Failure policy is never complete and Netflix’s response to the Christmas outage exemplifies this approach.

There has been a lot of online talk about Oauth and OpenID, what they contribute to website / applications security, how they differ and/or are similar. I would like to show how they can jointly contribute to increased security for a website or application. To put a context on this blog, I refer to a previous blog that I wrote on Building in security to websites and apps, where I discussed a selection of OWASP principles of confidentiality, integrity and availability.
Within the scope of OWASP’s availability principle, authorisation and authentication are important and are closely related. OpenID is every much in the authentication area, while Oauth is in the authorisation space.

When a business wants to provide a service via their website or web application, they want to ensure that their users experience a good service without compromising on security. By building in a focus on security from the start when building a website or application, it is possible to ensure a quality and secure user experience. This blog post is about an approach to securing your website/web app, drawing from OWASP principles.

In a previous post, I discussed how disaster recovery planning can give a business a competitive edge by helping to identify risks and how best to ‘manage’ them. Two of the potential approaches; risk transference and risk mitigation can involve using the services of a Disaster Recovery (DR) service provider. In this post I write [...]

DR can give a business a competitive advantage The sight of the words ‘disaster recovery’ are generally greeted with a quick mouse click (or turn of the page). Particularly in these challenging times, businesses reckon that there is more interesting work to be getting on with. After all, what benefit is disaster recovery going to [...]

Increasingly, organisations from different business sectors are using customer relationship management (CRM) systems to help boost sales and revenues. Depending on the approach that they adopt in selecting and implementing such a solution, they may have mixed results in terms of their sales and customer interactions. In this post, I discuss various aspects of an [...]