On 26th May 2012 the UK will become subject to enforcement of a new EU cookie law. With a raft of options and unclear advice on what will and wont contravene the regulations, website owners are understandably concerned. Crafted cut through the confusion with sensible advice for all website owners on their responsibliities and options.
eBusiness Club "Demystifying the EU Cookie Law presentation, GeldardsJon Egley
The eBusiness Club eBiz byte seminar delivered by Julian Turner, Senior Associate Solicitor with one of the country’s leading regional law firms Geldards demystifying both the legal issues whilst offering practical advice on how to implement effective solutions.
This is a brief policy primer on Google's Privacy and Terms of Use details. Explained without dogma, instead with an insight into how their guidelines impact on your digital shadow online.
10-22-13 Presentation on Google Glass and Privacy ChallengesJonathan Ezor
"Flawed Transparency: Shared Data Collection and Disclosure Challenges for Google Glass and Similar Technologies" presented by Prof. Jonathan I. Ezor of Touro Law Center for Innovation in Business, Law and Technology for the 2013 CEWIT conference in Melville, NY
eBusiness Club "Demystifying the EU Cookie Law presentation, GeldardsJon Egley
The eBusiness Club eBiz byte seminar delivered by Julian Turner, Senior Associate Solicitor with one of the country’s leading regional law firms Geldards demystifying both the legal issues whilst offering practical advice on how to implement effective solutions.
This is a brief policy primer on Google's Privacy and Terms of Use details. Explained without dogma, instead with an insight into how their guidelines impact on your digital shadow online.
10-22-13 Presentation on Google Glass and Privacy ChallengesJonathan Ezor
"Flawed Transparency: Shared Data Collection and Disclosure Challenges for Google Glass and Similar Technologies" presented by Prof. Jonathan I. Ezor of Touro Law Center for Innovation in Business, Law and Technology for the 2013 CEWIT conference in Melville, NY
This is a copy of the Powerpoint skideshow called "The 'Future of the Web' it is part of a much larger seminar which contains live, interactive and indepth demos that are not part of the this slideshow.
The seminar explains how you can exploit the new and emerging technologies to your organisations advantage.
As well as many live demonstrations the seminars outline real-life case studies and reveal up to date tricks and techniques that will save you time and money and enable you to measure your online marketing efforts. The seminar will also look at a number of new/emerging online business models."
Stephen Whitelaw (August 2011)
Trending Topics in Data Collection & Targeted MarketingcdasLLP
Slideshow to accompany co-sponsored panel from IAB Ad Lab and Cowan, DeBaets, Abrahams & Sheppard LLP. Participants: Joshua B. Sessler, Eleanor M. Lackman, Sarah Hudgins. For more entertainment and digital media law analysis, go to: http://cdas.com/legal/
Apple co founder steve wozniak to start a blockchain startupBlockchain Council
Blockchain and cryptocurrency are two developments in the technology domain that have taken the world by storm. Be it startups or established names in the industry, none of them is left untouched with its effect. Despite being a new technology, Blockchain has a vast potential to transform the industry.
The Fiduciary Access to Digital Assets Act in Michigan: Now That We Have it, ...gallowayandcollens
Attorney Howard H. Collens presents the most recent updates on the new Fiduciary Access to Digital Assets Act. Learn the many states that have recently enacted the new Act and updates on what the future holds for estate planning and digital assets.
The Fiduciary Access to Digital Assets Act in Michigan:Now That We Have it, W...gallowayandcollens
Attorney Howard Collens presented the most recent updates on Michigan’s new Fiduciary Access to Digital Assets Act. Now is the perfect time to update your will, trust and power of attorney to incorporate the latest options for dealing with your digital assets.
Discussion of the main elements of the draft Data Protection Regulation: what difference will it make to industry practice and user rights to control their data?
Don’t be left behind because you’re not aware of current best practices and the latest privacy compliance. These transpiring challenges are caused by constant changes in the industry best practices, deliverability methods, and legislative privacy requirements.
Facilitated this workshop for Political Science 152 students of UP Manila last March 3, 2012 for their "Laws in Persuasion: An Alternative Classroom Learning Experience on Lobbying Law and strategies in the Philippines".
What every product manager needs to know about online privacyTrevor Fox
This seminar will introduce the issue and describe the potential for new privacy laws in the US and in the EU that could affect the business model of social medial/Web 2.0/mobile app vendors.
This is a presentation prepared and delivered to the International Bar Association Conference in 2012 on behalf of the Interactive Direct Marketing Association. It looks at some of the pragmatic challenges that exist in getting organisations to adopt and adapt to the requirements of the Cookies regulations.
4Ps Marketing thought it would be a good idea to inform our clients about the change in legislation with Cookies. Our CTO has put this presentation together which hopefully explains what and why the legislation is changing.
This is a copy of the Powerpoint skideshow called "The 'Future of the Web' it is part of a much larger seminar which contains live, interactive and indepth demos that are not part of the this slideshow.
The seminar explains how you can exploit the new and emerging technologies to your organisations advantage.
As well as many live demonstrations the seminars outline real-life case studies and reveal up to date tricks and techniques that will save you time and money and enable you to measure your online marketing efforts. The seminar will also look at a number of new/emerging online business models."
Stephen Whitelaw (August 2011)
Trending Topics in Data Collection & Targeted MarketingcdasLLP
Slideshow to accompany co-sponsored panel from IAB Ad Lab and Cowan, DeBaets, Abrahams & Sheppard LLP. Participants: Joshua B. Sessler, Eleanor M. Lackman, Sarah Hudgins. For more entertainment and digital media law analysis, go to: http://cdas.com/legal/
Apple co founder steve wozniak to start a blockchain startupBlockchain Council
Blockchain and cryptocurrency are two developments in the technology domain that have taken the world by storm. Be it startups or established names in the industry, none of them is left untouched with its effect. Despite being a new technology, Blockchain has a vast potential to transform the industry.
The Fiduciary Access to Digital Assets Act in Michigan: Now That We Have it, ...gallowayandcollens
Attorney Howard H. Collens presents the most recent updates on the new Fiduciary Access to Digital Assets Act. Learn the many states that have recently enacted the new Act and updates on what the future holds for estate planning and digital assets.
The Fiduciary Access to Digital Assets Act in Michigan:Now That We Have it, W...gallowayandcollens
Attorney Howard Collens presented the most recent updates on Michigan’s new Fiduciary Access to Digital Assets Act. Now is the perfect time to update your will, trust and power of attorney to incorporate the latest options for dealing with your digital assets.
Discussion of the main elements of the draft Data Protection Regulation: what difference will it make to industry practice and user rights to control their data?
Don’t be left behind because you’re not aware of current best practices and the latest privacy compliance. These transpiring challenges are caused by constant changes in the industry best practices, deliverability methods, and legislative privacy requirements.
Facilitated this workshop for Political Science 152 students of UP Manila last March 3, 2012 for their "Laws in Persuasion: An Alternative Classroom Learning Experience on Lobbying Law and strategies in the Philippines".
What every product manager needs to know about online privacyTrevor Fox
This seminar will introduce the issue and describe the potential for new privacy laws in the US and in the EU that could affect the business model of social medial/Web 2.0/mobile app vendors.
This is a presentation prepared and delivered to the International Bar Association Conference in 2012 on behalf of the Interactive Direct Marketing Association. It looks at some of the pragmatic challenges that exist in getting organisations to adopt and adapt to the requirements of the Cookies regulations.
4Ps Marketing thought it would be a good idea to inform our clients about the change in legislation with Cookies. Our CTO has put this presentation together which hopefully explains what and why the legislation is changing.
Following the introduction of the EU Privacy Directive, which governs the use of cookies, into Irish law, Mindshare met with the Data Protection Commissioner as part of the IAB Privacy Working Group. These are the notes from that meeting
Greenlight digital marketing - when the digital cookie crumblesGreenlight Digital
Browser ‘cookies’ are the life blood of online marketing. They tells us where our site traffic comes from, in what quantities and what it does when it gets there. But the humble Cookie is under threat from many angles. Come May 26 2012, European privacy laws come into force. All UK websites must offer users opt-in consent tools to allow cookies to pass information about browsing activities to 3rd parties. So here’s our brief and easy to read slide pack giving you an overview and highlighting options.
Kieon presentation about the Privacy and Electronic Communications Regulations (the ‘New Cookie Law’).
The UK’s Privacy and Electronic Communications Regulations were updated in May 2011 to require users to explicitly opt-in to having “…cookies and also… [any] similar technologies for storing information.” placed on any device used to access the Internet.
A 12 month grace period was allowed in order to give website owners time to comply with the regulations.
This grace period expires in May 2012.
A-Z Guide to Cookie Consent and Cookie Laws Around the World.pdfAdzappier
The advent of cookies since the inception of the internet has particularly helped marketers and advertisers to cash in on much profit through online users' personal data. But this is the competitive edge that only a handful of companies can enjoy anymore.
Checklist to comply with EU cookie law
Display a cookie banner on a user's first visit
Inform users of the cookies and their purposes.
Collect users' active consent
Provide users with 'accept' or 'reject' cookies button.
Give users the option to opt-in to specific cookie categories.
Provide detailed information – the name of the cookie provider, description, and cookie duration
Give users a user-friendly option to withdraw consent.
Do not use cookie walls that prevent access to the website unless the user accepts cookies.
Do not use pre-ticked boxes
Block third-party cookies until the user’s consent
Record cookie consents for proof of compliance
Do not set cookies if the user is scrolling or continuing to use a website.
Cookie wall vs. paywall, what's the difference?
A cookie wall is a mechanism wherein a user has no option other than to accept the processing of cookies to get access to the website.
Advertisers monetize content for the user to access it by either a paid subscription or subscribing with email. This is paywall.
Austrian and French DPAs have already concurred that the paywall system is valid as long as the subscription to the site gives away the content at a modest and fair cost so that users' free choice doesn't constrain.
https://adzapier.com/the-cookie-consent-guide-building-a-customer-centric-brand
How to build your brand through digital marketing - Visit Essex Conference 2017Crafted
Ian Miller, CEO of Crafted recently spoke at the 2017 Visit Essex Annual Conference held at Hedingham Castle on the subject of building your brand through digital marketing.
VAC16 - The Future of Search for AttractionsCrafted
Crafted's CEO Ian Miller co-hosted a seminar alongside Bristol Culture's Head of Digital Mark Pajak at the National Conference of Visitor Attractions 2016.
Covering the subject of 'Mobile and Digital Transformation in the Tourism Sector', Ian's presentation focussed specifically on 'The Future of Search for Attractions' and how mobile, video and voice search are changing the digital landscape.
Trading channel data for campaign success brighton seoCrafted
Emma Andrews, Strategy Director at Crafted, outlines why inter-departmental collaboration is key to online marketing success. She explores how SEO data can be used to inform more effective channel strategy and discusses what SEOs can learn from the insights provided by other business units. Presented at BrightonSEO 2015
The future of Google and what this means for hotel marketers - Crafted at the...Crafted
Ian Miller, CEO, at Crafted, shares his thoughts on what could be in store for Google and what this might mean for hotels, hoteliers and hotel marketers. Presentation from Hotel Marketing Conference 2015.
BrightonSEO: Context is King - Ian Miller, CEO, at Crafted Crafted
Presentation from Ian Miller's BrightonSEO talk April 2015 - Context is King: looking beyond keywords - how you can help search engines rank your content. Ian is CEO at digital agency Crafted, which specialises in web and software development, search marketing, conversion rate optimisation (CRO) and user experience (UX).
A review of 2014's digital marketing milestones & 2015's online marketing pre...Crafted
It was the year that we said ‘Ello’ to Facebook’s new rival, Gmail made it easier to unsubscribe from marketing emails and Apple entered the wearable tech race with a watch. Digital agency Crafted offer a review of 2014's digital marketing milestones, along with their predictions for 2015's online marketing trends. http://www.crafted.co.uk/
Competitor and consumer intelligence in the digital age: Drive Digital talk b...Crafted
This presentation will help you understand what tools to use, and processes to go through, in order to see what your competitors, and customers, are doing online.
We’ll uncover the gems of information that’ll show you what’s working, what’s not and how your customers respond, to help make your digital marketing become even more effective.
Predicting the future of Google - BrightonSEOCrafted
By looking at Google’s recent acquisitions and key hires, our search director, Ian Miller predicts where Google is heading in years to come, and how SEOs can expect and adapt to these changes now.
The importance of digital marketing: a retail perspective - EoE Co-op's Oli W...Crafted
The largest independent retailer in East Anglia, with more than 200 trading outlets in more than 70 towns and villages, the East of England Co-op has 140 years of experience doing business that makes a difference to the communities that we live in. Speaking at Digital Bites, Oli explains the important role that digital marketing plays in maintaining core values and growing success.
To find out more, visit http://www.crafted.co.uk/latest/events/
Is Google taking over the world? by Crafted's Ian Miller at Digital BitesCrafted
Incorporated in a California garage, Google has come a long way since 1998. In less than 16 years, it’s given us Gmail and YouTube, launched its own social media platform and revolutionised the advertising industry. That’s aside from creating the world’s most popular search engine, web browser (Chrome) and smartphone operating system (Android).
It’s given us wearable technology and the ability to stream internet shows from our tablets to our TVs. And then there are the internet beaming hot air balloons, driverless cars and the intelligent thermostat that programs your home’s heating schedule, all by itself.
Crafted asks, is Google taking over the world?
This presentation is from Digital Bites. To find out more, visit http://www.crafted.co.uk/latest/events
How to create a content marketing strategy - Drive Digital Crafted
Customers are becoming blind to traditional marketing interruptions. Creating relevant, engaging and valuable content, such as videos, whitepapers and blog posts, can help to capture their attention online.
To ensure you are creating the right content, sharing it via the right channels and reaching the right audiences, Ian Miller, Search Director, at Crafted explains how to develop a content strategy for content marketing.
The three things you must know to succeed on social mediaCrafted
These days it seems that everyone uses Facebook, LinkedIn and Twitter doesn’t it, and there’s no big secret to using these networks is there? Well, if that’s true why do we hear so many horror stories about it all going wrong and why can nobody tell you how much money they’ve made using it? In this Digital Bites talk, social media expert author Adam Gray explains how to do it better than the competition and get it right.
Customers are becoming blind to traditional marketing interruptions. Creating relevant, engaging and valuable content, such as videos, whitepapers and blog posts, can help to capture their attention online. In this Digital Bites talk, Ian Miller, Search Director, at Crafted explains how to develop a content marketing strategy.
Going the distance: achieving your goals in marketing, business and life Tom...Crafted
It’s a new year and a new start. 2014 is brimming with business opportunities, but how can you find the motivation to tackle its challenges head-on? Used to running back-to-back marathons, ultrarunner Tom Boother will illustrate the key components to help you achieve your goal this year, whether it’s running 100 miles or gaining 1000 Twitter followers. Tom's presentation is from February's Digital Bites. Find out more at http://www.digital-bites.co.uk
Do something digital in 2014 - Digital Bites February 2014Crafted
Tom Gillman, Head of Sales and Marketing at bespoke digital agency Crafted, looks at the evidence for embracing digital marketing to drive your business forward. Whether you are just starting out or looking to improve your digital strategy, Tom suggests ways that you can step up to the challenge in 2014, offering tips and advice covering the most popular digital channels. Tom's presentation is from Digital Bites February 2014. You can see more at http://www.digital-bites.co.uk
Essential digital marketing trends for 2014Crafted
Tom Gillman, Barnie Mills and Ian Miller from digital agency Crafted look ahead to what 2014 is likely to hold in store for digital marketing. They give you the lowdown on the trends that are likely to impact your marketing over the next 12 months. From Digital Bites December. http://digital-bites.co.uk
2013: A review of the year in digital marketing Crafted
It was the year that Google Hummingbird took flight and Instagram took on Twitter and YouTube in the online video race. Ian Miller, Search Director at Crafted recaps on some of 2013’s digital marketing milestones. From December's Digital Bites event http://www.digital-bites.co.uk
User experience and SEO: Is your website losing you customers? Chelmsford Cit...Crafted
Online, first impressions count. When landing on your website, customers take just seconds to decide whether to look around or hit the ‘back’ button, returning to Google and jumping to your competitor’s site. If your website is badly designed, poorly worded or underperforming in search engines, you are likely to be missing opportunities.
This presentation will help you to make your website work harder for your business. User experience expert, Barnie Mills, and search marketing specialist, Ian Miller, from Ipswich-based digital agency Crafted explore what makes a successful website, helping you to boost enquiries and improve online sales. Looking at design, content and search engine optimisation (SEO) tactics, the presentation outlines helpful tweaks to boost the performance of your existing site and the considerations for creating one from scratch.
How to grow your twitter following on the cheep!Crafted
Speaking at Digital Bites, Sarah Howe, Digital Marketing Manager at Adnams, offers her five simple steps to build an engaged following on Twitter without spending a penny. Coordinating social media for a brand with more than 20,000 followers, Sarah explains how you can connect with potential customers, raise brand awareness and build a community around your product or service.
How to make your website launch really take offCrafted
Vicki Cole, Marketing Manager at Crafted, outlines how to get maximum marketing value from the launch of your new website. From PR to social media, she explores how to develop an integrated campaign to make the most of opportunities to engage with customers, capture new interest and drive increased traffic. Vicki offers her tips to ensure your new site gets the attention it deserves. For more see http://www.crafted.co.uk
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
2. Crafted Crafted
INFORMATION INFORMATION
Introduction
Last year, the EU introduced a piece of Cookies can be used for anything from
legislation that limited how websites could remembering a customer is signed in to helping
collect data about their visitors. Primarily track movements across a range of websites in
aimed at improving privacy it requires website order to deliver “targeted” advertising.
owners to gain consent before they can store
or retrieve information from their visitor’s In the UK, these changes are reflected within
devices. The practical implication of this has the Privacy and Electronic Communications
focussed on cookies: small files used by Regulations and will be policed by the
websites to gather data on visitors. Information Commissioner’s Office (ICO).
3. Crafted
INFORMATION
Without clear lines of what is (and isn’t) required
of website owners, the ICO deferred enforcing
Crafted information
the regulations by a year, which now start on
EU Cookie Law 26th May 2012.
Confusion reigns
Unfortunately, confusion has come about as • However, cookies used for most other
there is a large number of ways that the law purposes including analytical, first and
can be interpreted, with variations and possible third party advertising, and ones that
exemption for cookies that are essential for a recognise when a user has returned to
site to function and those that are a possible a website, will need to comply with the
privacy concern. new rules.
In order to comply, a website owner must • Achieving compliance in relation to
obtain explicit clarification that they can store third party cookies is one of the most
information about visitors on their devices. In challenging areas. The ICO is working
December the ICO gave additional background with other European data protection
on their interpretations of consent: authorities and the industry to assist in
addressing the complexities and finding
Key points set out include: the right answers.
• More detail on what is meant by consent. • The ICO will focus its regulatory
The advice says ‘consent must involve some efforts on the most intrusive cookies
form of communication where an individual or where there is a clear privacy impact
knowingly indicates their acceptance.’ on individuals.
• The guidance explains that cookies used for
online shopping baskets and ones that help
keep user data safe are likely to be exempt
from complying with the rules.
4. Crafted Crafted
INFORMATION INFORMATION
Are you confused?
Initially, the expectation was that every Also, websites with large overlays explaining
single cookie would have to be explained tracking cookies and asking visitors to accept
and accepted by a user. In practice this is them are likely to perform very badly for user
widely considered unworkable and the engagement against other sites which aren’t
general public is unlikely to understand the as strict.
intricacies of how cookies affect a website
and their experience using it, so might well Therefore, while website owners are worried
instinctively opt out resulting in an impaired about not complying, there is also concern
experience on the site and complete lack of that some of the methods suggested would
data for the website owner. negatively impact their site’s performance.
5. Crafted
INFORMATION
It is expected that first party cookies will be exempt
from legislation. The key area of impact is likely to
Crafted information
be ‘mimimally intrusive’ analytics cookies for
EU Cookie Law website usage and performance data.
The way foward Is Analytics exempt?
In this period of confusion there have been For most websites the key impact will be to
several approaches suggested. For instance BT Analytics, which uses cookies to track how
have introduced an overlay at the bottom of the visitors find and navigate around your
page with information should a visitor want it website. It’s expected, but not guaranteed,
but by default tracking everything. that a site is unlikely to be prosecuted for
not obtaining specific consent for Analytics
The ICO themselves have an opt-in box at the cookies, as long as they have a robust and
top of the page, which is quite intrusive. clear privacy policy explaining that this data
However, it could be considered that it doesn’t is collected and how it will (and won’t) be
even meet their own criteria of ‘informed used. An example of this is econsultancy
consent’ as it doesn’t give the full information who have a clear ‘cookie’ link in the top
of what cookies will be stored and the scope navigation. ...More details
of the data used. In practice most sites are
taking a ‘wait and see’ approach. The government’s Cabinet Office’s own
guidelines focus heavily on the intent of the
In general it’s expected that first party cookies, cookies rather than specifically whether they
those set by the website itself, will be exempt. are used or agreed. In relation to Analytics
While third party ones would be broadly “The consensus was, especially in the case of
separated into those that have minimal privacy first-party analytics cookies, these types of
intrusion such as Google Analytics and those that cookies are ‘minimally intrusive’ (in line with
are more specific such as advertising tracking. the ICO guidance) and that the bulk of our
Some are even being overt that they aren’t efforts to rationalise our use of cookies should
making a decision yet, such as be focused on cookies classified as ‘moderately
Delia Online’s overlay. intrusive’” ...More details
6. Crafted
INFORMATION
“There will not be a wave of knee-jerk formal
Crafted information
enforcement action taken against people who
EU Cookie Law are not yet compliant but are trying to get there.”
What should we do?
Unfortunately, even at this late stage there is no • Ensure that there is a robust and clear
single approach and, as above, the ICO have privacy policy that covers your cookies,
stated that they would much rather work with the data stored and how it’ll be used.
sites to comply, than start prosecutions.
• Consider increasing the prominence of
However, there are some core steps that should cookie information on the site and if you
be undertaken in preparation for the new feel all cookies will be exempt, giving an
legislation: option to specifically opt out, perhaps
with an overlay or top/bottom bar.
• Do a full audit of cookies used by the site
and consider their classification against the It is likely that until the ICO starts
ICO guidelines for their level of intrusiveness. enforcing the legislation and the exact
parameters are defined through test cases
• For the most intrusive cookies, consider and examples, that website owners might
their necessity and whether the benefits well be left pondering what is really
are outweighed by having to ask for consent required of them to comply.
from every visitor and the possible impact
of user engagement with your site.
7. Ipswich Studio
32 Fore Street
Ipswich IP4 1JU
T. +44 (0) 1473 213222
E. hello@craftedmedia.com
London Office
Clerkenwell Workshops
27/31 Clerkenwell Close
London EC1R 0AT
T. +44 (0) 20 7061 6216
www.craftedmedia.com