5625275
submission
Random Feature writes:
Quite a few cloud providers suggest (privately) that large data sets needing to be transferred to "the cloud" should be shipped on a disk. Ever wonder what the bandwidth of van full of hard drives traveling 300 miles at 65 mph? Wonder no more...
4193251
submission
Random Feature writes:
In response to Build an Open Source SSL Accelerator, in which o3 magazine detailed how to build a solution comparable to an F5 BIG-IP 6900 on the cheap, F5 Fires Back claiming it's not as cheap as it appears and pointing out the potential performance implications of a "cobbled together set of components designed to mimic similar functionality." The discussion on the performance of the Open Source solution based on Opteron RSA operation processing capabilities brings into question the validity of the "more SSL TPS for cheaper" argument presented by o3.
4064919
submission
Random Feature writes:
The Prototype 1.5 framework allows the use of a custom HTTP header, X-JSON, as a method of transporting application data to be executed immediately on return. Are the potential security risks worth the convenience? Should security professionals disallow the use by any means necessary?
3828287
submission
Random Feature writes:
Everything is becoming a service, including load testing. This is a review of Load Impact (Beta), a service that includes a free version for load testing web applications across the web. Dangerous? Maybe, but load testing applications using frameworks like Google AppEngine or hosted on AWS are hard to load test without some kind of tool and Load Impact may be one of them. And it's free. Who doesn't like free?
3330403
submission
Random Feature writes:
The Cloud Computing Interoperability Forum (CCIF) is currently discussing cloud portability specifications. It seems crazy to define a standard before we even know who owns what in the cloud because you can only port what you own. For example, if you created a security or acceleration policy for your cloud computing-based app, is the policy yours or the provider's? Who owns meta-data in the cloud?? True portability between clouds seems impossible depending on the answer.
155405
submission
Random Feature writes:
This article at InformationWeek talks about the "pain" of being in IT. Is it perhaps because we blame ourselves for all IT woes, especially those that are security related? This blogger thinks we should stop "blaming the victim" when security breaches occur. Are we too hard on ourselves? Are we doing enough? Is security really futile in the end? Is Bruce Schneier right and it's all our fault for not being security-minded enough?