Come to this session to learn how to use the Facebook C# SDK and build Facebook applications with .NET using ASP.NET MVC, Silverlight and Windows Phone 7 and how to host them on Windows Azure.
A content management system (CMS) is a computer application that allows publishing, editing, and modifying content on a website. It offers advantages like being easy for developers to use, cost effective, flexible, and able to be maintained over time. Popular CMS platforms include WordPress, Drupal, Joomla, Textpattern, SilverStripe, and MODX. Examples of websites that use CMS include icondock.com and social.ford.com.
The relational database model was designed to solve the problems of yesterday’s data storage requirements. The massively connected world of today presents different problems and new challenges. We’ll explore the NoSQL philosophy, before comparing and contrasting the strengths and weaknesses of the relational model versus the NoSQL model. While stepping through real-world scenarios, we’ll discuss the reasons for choosing one solution over the other.
To complete this session, let’s demonstrate our findings with an application written with a NoSQL storage layer and explain the advantages that accrue from that decision. By taking a look at the new challenges we face with our data storage needs, we’ll examine why the principles behind NoSQL make it a better candidate as a solution, than yesterday’s relational model.
Open source BI tool Mondrian is an OLAP engine that operates on normalized relational databases to provide multi-dimensional analysis. It is bundled with other open source packages like JPivot for the UI layer. Mondrian uses a schema file to define the logical multi-dimensional model and dimensions, hierarchies, measures and calculated members. It supports extensions through plug-ins and user-defined functions. For performance, aggregate tables, materialized views and query caching can be used. While it provides an open source alternative to proprietary BI tools, it also has some constraints around key joins and schema normalization.
The document discusses upcoming features and specifications for Java EE 7. Key points include:
- Java EE 7 will include features to make the platform more suitable for cloud/PaaS deployments like multitenancy and metadata for service profiles and modularity.
- Approved Java EE 7 specifications so far include JPA 2.1, JAX-RS 2.0, Servlet 3.1, EL 3.0, and JMS 2.0. Additional specifications being worked on include EJB 3.2, CDI 1.1, JSON 1.0, and web sockets.
- The full Java EE 7 release is targeted for Q3 2012 and will include any specifications that can be completed
WCF provides first-class support for building "Web" services that embrace REST design principles using standard Web protocols and data formats. This session illustrates how to build WCF services that support the HTTP uniform interface and different resource representations like XML, JSON, and Atom to enhance your Web 2.0 mash-up solutions. Throughout the session we'll specifically look at some of the new features in WCF 4.0 and WCF Data Services.
We all have seen our share of bad code. We certainly have come across some good code as well. What are the characteristics of good code? How can we identify those? What practices can promote us to write and maintain more of those good quality code. This presentation will focus on this topic that has a major impact on our ability to be agile and succeed.
Concocting an MVC, Data Services and Entity Framework solution for AzureSaltmarch Media
This document discusses creating an MVC web application that consumes data from an Entity Framework Code First model exposed via an Azure data service and SQL Azure database. It recommends designing and testing locally first before publishing components individually to Windows Azure, and provides resources for learning Entity Framework, WCF Data Services, OData, Windows Azure, and SQL Azure.
Fuerzas internas y externas que forman el paisajeRoberto Marin
Este documento describe las fuerzas internas y externas que forman el relieve terrestre. Las fuerzas internas incluyen el diastrofismo, que eleva o hunde las rocas, y el vulcanismo, que expulsa materiales a través de volcanes. Las fuerzas externas, como la sedimentación, la denudación y la erosión, modelan el terreno. La sedimentación implica la deposición de materiales erosionados, mientras que la denudación incluye la desintegración y remoción de rocas. Las acciones humanas como el urbanismo también afectan la formación
A content management system (CMS) is a computer application that allows publishing, editing, and modifying content on a website. It offers advantages like being easy for developers to use, cost effective, flexible, and able to be maintained over time. Popular CMS platforms include WordPress, Drupal, Joomla, Textpattern, SilverStripe, and MODX. Examples of websites that use CMS include icondock.com and social.ford.com.
The relational database model was designed to solve the problems of yesterday’s data storage requirements. The massively connected world of today presents different problems and new challenges. We’ll explore the NoSQL philosophy, before comparing and contrasting the strengths and weaknesses of the relational model versus the NoSQL model. While stepping through real-world scenarios, we’ll discuss the reasons for choosing one solution over the other.
To complete this session, let’s demonstrate our findings with an application written with a NoSQL storage layer and explain the advantages that accrue from that decision. By taking a look at the new challenges we face with our data storage needs, we’ll examine why the principles behind NoSQL make it a better candidate as a solution, than yesterday’s relational model.
Open source BI tool Mondrian is an OLAP engine that operates on normalized relational databases to provide multi-dimensional analysis. It is bundled with other open source packages like JPivot for the UI layer. Mondrian uses a schema file to define the logical multi-dimensional model and dimensions, hierarchies, measures and calculated members. It supports extensions through plug-ins and user-defined functions. For performance, aggregate tables, materialized views and query caching can be used. While it provides an open source alternative to proprietary BI tools, it also has some constraints around key joins and schema normalization.
The document discusses upcoming features and specifications for Java EE 7. Key points include:
- Java EE 7 will include features to make the platform more suitable for cloud/PaaS deployments like multitenancy and metadata for service profiles and modularity.
- Approved Java EE 7 specifications so far include JPA 2.1, JAX-RS 2.0, Servlet 3.1, EL 3.0, and JMS 2.0. Additional specifications being worked on include EJB 3.2, CDI 1.1, JSON 1.0, and web sockets.
- The full Java EE 7 release is targeted for Q3 2012 and will include any specifications that can be completed
WCF provides first-class support for building "Web" services that embrace REST design principles using standard Web protocols and data formats. This session illustrates how to build WCF services that support the HTTP uniform interface and different resource representations like XML, JSON, and Atom to enhance your Web 2.0 mash-up solutions. Throughout the session we'll specifically look at some of the new features in WCF 4.0 and WCF Data Services.
We all have seen our share of bad code. We certainly have come across some good code as well. What are the characteristics of good code? How can we identify those? What practices can promote us to write and maintain more of those good quality code. This presentation will focus on this topic that has a major impact on our ability to be agile and succeed.
Concocting an MVC, Data Services and Entity Framework solution for AzureSaltmarch Media
This document discusses creating an MVC web application that consumes data from an Entity Framework Code First model exposed via an Azure data service and SQL Azure database. It recommends designing and testing locally first before publishing components individually to Windows Azure, and provides resources for learning Entity Framework, WCF Data Services, OData, Windows Azure, and SQL Azure.
Fuerzas internas y externas que forman el paisajeRoberto Marin
Este documento describe las fuerzas internas y externas que forman el relieve terrestre. Las fuerzas internas incluyen el diastrofismo, que eleva o hunde las rocas, y el vulcanismo, que expulsa materiales a través de volcanes. Las fuerzas externas, como la sedimentación, la denudación y la erosión, modelan el terreno. La sedimentación implica la deposición de materiales erosionados, mientras que la denudación incluye la desintegración y remoción de rocas. Las acciones humanas como el urbanismo también afectan la formación
A Cocktail of Guice and Seam, the missing ingredients for Java EE 6Saltmarch Media
JSR-299 (the JSR formerly known as "WebBeans") has recently turned into "Contexts and Dependency Injection for the Java EE platform". Accompanied by Last Minute JEE 6 candidate JSR-330 ("Dependency Injection for Java") the two go hand in hand while one almost seems to rip a little bit of the concept of "WebBeans" apart further. We’ll take a look their synergies and how they fit in with the rest of Java SE as well as EE.
Want to learn how to create web apps in practically no time, then host them for free in the cloud? Then the Gaelyk Workshop is for you. Gaelyk is a lightweight, Groovy-based framework designed specifically for the Google App Engine (GAE). It provides delightfully easy wrappers around the GAE APIs and just enough framework for you to get small jobs done quickly and easily.
Come ready to build a small application over the course of three hours. If you've got a Google App Engine account, you can even deploy your app to the cloud. Bring your laptop or come ready pair with a friend.
Introduction to WCF RIA Services for Silverlight 4 DevelopersSaltmarch Media
Building rich internet applications for business that are interactive and elegant is hard. WCF RIA Services, released alongside Silverlight 4, represents a new take on multi-tier application development. In this demo-only (no slides) talk, we'll introduce RIA Services and then walk through how you can use it to easily build your own rich internet applications using Silverlight 4 and ASP.NET.
In this talk, come to learn about Broadridge Integrated Services for web applications - a suite of web applications, web services and java libraries that can be mainly categorized as:
Web Integrated Services: These applications provide a common integration framework, enable UI standards across products for a client and provide set of development components/utility tools that can be used across applications.
Federated Services: These applications handle the tasks related to authentication and authorization.
CDI and Seam 3: an Exciting New Landscape for Java EE DevelopmentSaltmarch Media
CDI (Contexts and Dependency Injection) for Java, aka JSR-299 has given us a new playing field for developing Java EE applications, by providing a standardised dependency injection framework and contextual component model. The CDI specification defines a feature for "portable extensions", which allow framework developers to extend the default behaviour of the Java EE container. By providing a number of useful portable extensions, Seam 3 increases developer productivity by solving the problems common to many enterprise projects. In this talk we will look at a number of features that Seam provides, dealing with transactions and persistence, security, internationalisation, bean validation and tooling, and how you can use them to improve your productivity in the real-world to develop rich internet applications. We'll also look at some of the cool upcoming features of Seam such as social network integration, and more.
Diseño de programas de mercadotecnia directa promocion de eventos organizacio...Axel Valiente Bautista
El documento proporciona una introducción al diseño de programas de mercadotecnia directa. Explica que la mercadotecnia directa busca obtener una respuesta medible del cliente, generalmente a través de una compra, utilizando pocos medios publicitarios. También describe algunas técnicas comunes de mercadotecnia directa como el correo directo, catálogos y llamadas telefónicas.
“Oh My God! What did I do?” Chances are you have heard, or even uttered, this expression. This demo-oriented session will have many examples where developers were dumbfounded by their own mistakes. The goal of this session is to learn which small details can be dangerous to the production environment and SQL Server as a whole. We will talk about common bad habits and how to avoid them. There is good chance you will remember your early days during the session. Learning some of these tricks may save your current job.
You're on another typical JavaEE-based project, and you find yourself writing the same old infrastructure code - again. Are you wondering if there's a easier way to incorporate the basics such as configuration, logging, HTTP, and email into your application? If so, then this presentation is for you. By using a number of Java-based utilities from Apache and similar projects, you can learn how to stop re-inventing the wheel.
We'll start with a simple Java application and add the ability to use:
Apache Commons Lang for String handling
Apache Commons Configuration to configure an application
Apache Velocity Templates and Apache Commons Email to format and send email messages
Apache Commons IOUtils to simplify File and Stream I/O
Apache POI to generate Excel spreadsheets
Joda Time to simplify Date/Time handling
SLF4J and Logback to log messages
Jasypt to encrypt sensitive data
By learning to leverage these utilities, attendees can simplify their applications by reducing/eliminating infrastructure code.
We’re agile, so we don’t have to estimate and have no deadlines, right? Wrong! This session will review the problem with estimations in projects today and then give an overview of the concept of agile estimation and the notion of re-estimation. We’ll learn about user stories, story points, team velocity, and how to apply them all to estimation and iterative re-estimation. We will take a look at the cone of uncertainty and how to use it to your advantage. We’ll then take a look at the tools we will use for Agile Estimation, including planning poker, Visual Studio TFS and much more.
Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank
Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.
“An Outlook of the Ongoing and Future Relationship between Blockchain Technologies and Process-aware Information Systems.” Invited talk at the joint workshop on Blockchain for Information Systems (BC4IS) and Blockchain for Trusted Data Sharing (B4TDS), co-located with with the 36th International Conference on Advanced Information Systems Engineering (CAiSE), 3 June 2024, Limassol, Cyprus.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIVladimir Iglovikov, Ph.D.
Presented by Vladimir Iglovikov:
- https://www.linkedin.com/in/iglovikov/
- https://x.com/viglovikov
- https://www.instagram.com/ternaus/
This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation.
Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners.
This case study covers various aspects, including:
People: The contributors and community that have supported Albumentations.
Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions.
Challenges: The hurdles in monetizing open-source projects and measuring user engagement.
Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration.
Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community.
Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations.
Mental Health: Maintaining balance and not feeling pressured by user demands.
Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth.
Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects.
Explore more about Albumentations and join the community at:
GitHub: https://github.com/albumentations-team/albumentations
Website: https://albumentations.ai/
LinkedIn: https://www.linkedin.com/company/100504475
Twitter: https://x.com/albumentations
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
A Cocktail of Guice and Seam, the missing ingredients for Java EE 6Saltmarch Media
JSR-299 (the JSR formerly known as "WebBeans") has recently turned into "Contexts and Dependency Injection for the Java EE platform". Accompanied by Last Minute JEE 6 candidate JSR-330 ("Dependency Injection for Java") the two go hand in hand while one almost seems to rip a little bit of the concept of "WebBeans" apart further. We’ll take a look their synergies and how they fit in with the rest of Java SE as well as EE.
Want to learn how to create web apps in practically no time, then host them for free in the cloud? Then the Gaelyk Workshop is for you. Gaelyk is a lightweight, Groovy-based framework designed specifically for the Google App Engine (GAE). It provides delightfully easy wrappers around the GAE APIs and just enough framework for you to get small jobs done quickly and easily.
Come ready to build a small application over the course of three hours. If you've got a Google App Engine account, you can even deploy your app to the cloud. Bring your laptop or come ready pair with a friend.
Introduction to WCF RIA Services for Silverlight 4 DevelopersSaltmarch Media
Building rich internet applications for business that are interactive and elegant is hard. WCF RIA Services, released alongside Silverlight 4, represents a new take on multi-tier application development. In this demo-only (no slides) talk, we'll introduce RIA Services and then walk through how you can use it to easily build your own rich internet applications using Silverlight 4 and ASP.NET.
In this talk, come to learn about Broadridge Integrated Services for web applications - a suite of web applications, web services and java libraries that can be mainly categorized as:
Web Integrated Services: These applications provide a common integration framework, enable UI standards across products for a client and provide set of development components/utility tools that can be used across applications.
Federated Services: These applications handle the tasks related to authentication and authorization.
CDI and Seam 3: an Exciting New Landscape for Java EE DevelopmentSaltmarch Media
CDI (Contexts and Dependency Injection) for Java, aka JSR-299 has given us a new playing field for developing Java EE applications, by providing a standardised dependency injection framework and contextual component model. The CDI specification defines a feature for "portable extensions", which allow framework developers to extend the default behaviour of the Java EE container. By providing a number of useful portable extensions, Seam 3 increases developer productivity by solving the problems common to many enterprise projects. In this talk we will look at a number of features that Seam provides, dealing with transactions and persistence, security, internationalisation, bean validation and tooling, and how you can use them to improve your productivity in the real-world to develop rich internet applications. We'll also look at some of the cool upcoming features of Seam such as social network integration, and more.
Diseño de programas de mercadotecnia directa promocion de eventos organizacio...Axel Valiente Bautista
El documento proporciona una introducción al diseño de programas de mercadotecnia directa. Explica que la mercadotecnia directa busca obtener una respuesta medible del cliente, generalmente a través de una compra, utilizando pocos medios publicitarios. También describe algunas técnicas comunes de mercadotecnia directa como el correo directo, catálogos y llamadas telefónicas.
“Oh My God! What did I do?” Chances are you have heard, or even uttered, this expression. This demo-oriented session will have many examples where developers were dumbfounded by their own mistakes. The goal of this session is to learn which small details can be dangerous to the production environment and SQL Server as a whole. We will talk about common bad habits and how to avoid them. There is good chance you will remember your early days during the session. Learning some of these tricks may save your current job.
You're on another typical JavaEE-based project, and you find yourself writing the same old infrastructure code - again. Are you wondering if there's a easier way to incorporate the basics such as configuration, logging, HTTP, and email into your application? If so, then this presentation is for you. By using a number of Java-based utilities from Apache and similar projects, you can learn how to stop re-inventing the wheel.
We'll start with a simple Java application and add the ability to use:
Apache Commons Lang for String handling
Apache Commons Configuration to configure an application
Apache Velocity Templates and Apache Commons Email to format and send email messages
Apache Commons IOUtils to simplify File and Stream I/O
Apache POI to generate Excel spreadsheets
Joda Time to simplify Date/Time handling
SLF4J and Logback to log messages
Jasypt to encrypt sensitive data
By learning to leverage these utilities, attendees can simplify their applications by reducing/eliminating infrastructure code.
We’re agile, so we don’t have to estimate and have no deadlines, right? Wrong! This session will review the problem with estimations in projects today and then give an overview of the concept of agile estimation and the notion of re-estimation. We’ll learn about user stories, story points, team velocity, and how to apply them all to estimation and iterative re-estimation. We will take a look at the cone of uncertainty and how to use it to your advantage. We’ll then take a look at the tools we will use for Agile Estimation, including planning poker, Visual Studio TFS and much more.
Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank
Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.
“An Outlook of the Ongoing and Future Relationship between Blockchain Technologies and Process-aware Information Systems.” Invited talk at the joint workshop on Blockchain for Information Systems (BC4IS) and Blockchain for Trusted Data Sharing (B4TDS), co-located with with the 36th International Conference on Advanced Information Systems Engineering (CAiSE), 3 June 2024, Limassol, Cyprus.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIVladimir Iglovikov, Ph.D.
Presented by Vladimir Iglovikov:
- https://www.linkedin.com/in/iglovikov/
- https://x.com/viglovikov
- https://www.instagram.com/ternaus/
This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation.
Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners.
This case study covers various aspects, including:
People: The contributors and community that have supported Albumentations.
Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions.
Challenges: The hurdles in monetizing open-source projects and measuring user engagement.
Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration.
Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community.
Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations.
Mental Health: Maintaining balance and not feeling pressured by user demands.
Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth.
Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects.
Explore more about Albumentations and join the community at:
GitHub: https://github.com/albumentations-team/albumentations
Website: https://albumentations.ai/
LinkedIn: https://www.linkedin.com/company/100504475
Twitter: https://x.com/albumentations
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionAggregage
Join Maher Hanafi, VP of Engineering at Betterworks, in this new session where he'll share a practical framework to transform Gen AI prototypes into impactful products! He'll delve into the complexities of data collection and management, model selection and optimization, and ensuring security, scalability, and responsible use.