This document summarizes Microsoft Silverlight 2, a web application framework for building rich interactive applications. Key points include:
- Silverlight 2 provides enhanced graphics, interactivity, and media capabilities compared to Silverlight 1.
- It supports cross-platform delivery across browsers, operating systems, and devices.
- Silverlight 2 allows for high-quality, low-cost media delivery with standards like VC-1 HD video and digital rights management.
- It features a .NET runtime environment with support for multiple programming languages and rich frameworks for UI, data binding, networking, and more.
Java REST API Comparison: Micronaut, Quarkus, and Spring Boot - jconf.dev 2020Matt Raible
Matt Raible compares the Java web frameworks Micronaut, Quarkus, and Spring Boot for building REST APIs. He demonstrates how to quickly get started with each framework, secure APIs with OAuth 2.1 and JWTs, build Docker images, and go native with GraalVM. Performance tests show Quarkus has the fastest startup time while Spring Boot has the largest community support in areas like Stack Overflow questions, GitHub stars, and jobs on Indeed.
Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Joker...Matt Raible
In this session, you'll learn about recommended patterns for securing your backend APIs, the infrastructure they run on, and your SPAs and mobile apps.
The world is no longer a place where you just need to secure your apps’ UI. You need to pay attention to your dependency pipeline and open-source frameworks, too. Once you have the app built, with secure-by-design code, what about the cloud it runs on? Are the servers secure? What about the accounts you use to access them?
If you lock all that sh*t down, how do you codify your solution so you can transport it cloud-to-cloud, or back to on-premises? This session will explore these concepts and many more!
Delivered at JokerConf on October 28, 2021 at 11am MDT: https://jokerconf.com/en/talks/lock-that-sh*t-down-auth-security-patterns-for-apps-apis-and-infra/
A First Look at Windows Presentation Foundation Everywhere (WPF/E): a Cross …goodfriday
WPF/E is a cross platform runtime enabling a subset of Windows Presentation Foundation (WPF) XAML to reach beyond the latest Windows PC platforms. With WPF/E you'll be able to build rich, interactive experiences that run in major Web browsers on major platforms as well as on mobile devices. The combination of WPF/E and WPF will enable designers and developers to have a consistent development experience across smart clients, Web-based applications, and mobile devices. Join us to discuss the WPF/E feature set, targeted platforms and browsers, the developer experience, and to see a preview of the technology.
AppFuse is an open source project/application that uses best-of-breed Java open source tools to help you develop web applications quickly and efficiently. Not only does it provide documentation on how to develop light-weight POJO-based applications, it includes features that many applications need out-of-the-box: authentication and authorization, remember me, password hint, skinnability, file upload, Ajax libraries, signup and SSL switching. This is one of the main features in AppFuse that separates it from the other "CRUD Generation" frameworks like Ruby on Rails, Trails and Grails. AppFuse is already an application when you start using it, which means code examples are already in your project. Furthermore, because features already exist, the amount of boiler-plate code that most projects need will be eliminated.
In this session, you will learn Seven Simple Reasons to Use AppFuse. If you don't use it to start your own projects, hopefully you will see that it provides much of the boiler-plate code that can be used in Java-based web applications. Since it's Apache Licensed, you're more than welcome to copy/paste any code from it into your own applications.
Also see article published at:
http://www.ibm.com/developerworks/java/library/j-appfuse/index.html
This document summarizes a presentation about the Grails framework. It discusses how Grails allows building modern Java web applications quickly using Groovy and conventions over configuration. Key features highlighted include GORM for object-relational mapping, GSP for views, and integration with Spring and other Java technologies. The document also provides overviews of Grails tags, plugins including Spring Security, and configuration options.
Microservices for the Masses with Spring Boot, JHipster, and JWT - J-Spring 2017Matt Raible
Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk.
We’ll use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!
This document summarizes Microsoft Silverlight 2, a web application framework for building rich interactive applications. Key points include:
- Silverlight 2 provides enhanced graphics, interactivity, and media capabilities compared to Silverlight 1.
- It supports cross-platform delivery across browsers, operating systems, and devices.
- Silverlight 2 allows for high-quality, low-cost media delivery with standards like VC-1 HD video and digital rights management.
- It features a .NET runtime environment with support for multiple programming languages and rich frameworks for UI, data binding, networking, and more.
Java REST API Comparison: Micronaut, Quarkus, and Spring Boot - jconf.dev 2020Matt Raible
Matt Raible compares the Java web frameworks Micronaut, Quarkus, and Spring Boot for building REST APIs. He demonstrates how to quickly get started with each framework, secure APIs with OAuth 2.1 and JWTs, build Docker images, and go native with GraalVM. Performance tests show Quarkus has the fastest startup time while Spring Boot has the largest community support in areas like Stack Overflow questions, GitHub stars, and jobs on Indeed.
Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Joker...Matt Raible
In this session, you'll learn about recommended patterns for securing your backend APIs, the infrastructure they run on, and your SPAs and mobile apps.
The world is no longer a place where you just need to secure your apps’ UI. You need to pay attention to your dependency pipeline and open-source frameworks, too. Once you have the app built, with secure-by-design code, what about the cloud it runs on? Are the servers secure? What about the accounts you use to access them?
If you lock all that sh*t down, how do you codify your solution so you can transport it cloud-to-cloud, or back to on-premises? This session will explore these concepts and many more!
Delivered at JokerConf on October 28, 2021 at 11am MDT: https://jokerconf.com/en/talks/lock-that-sh*t-down-auth-security-patterns-for-apps-apis-and-infra/
A First Look at Windows Presentation Foundation Everywhere (WPF/E): a Cross …goodfriday
WPF/E is a cross platform runtime enabling a subset of Windows Presentation Foundation (WPF) XAML to reach beyond the latest Windows PC platforms. With WPF/E you'll be able to build rich, interactive experiences that run in major Web browsers on major platforms as well as on mobile devices. The combination of WPF/E and WPF will enable designers and developers to have a consistent development experience across smart clients, Web-based applications, and mobile devices. Join us to discuss the WPF/E feature set, targeted platforms and browsers, the developer experience, and to see a preview of the technology.
AppFuse is an open source project/application that uses best-of-breed Java open source tools to help you develop web applications quickly and efficiently. Not only does it provide documentation on how to develop light-weight POJO-based applications, it includes features that many applications need out-of-the-box: authentication and authorization, remember me, password hint, skinnability, file upload, Ajax libraries, signup and SSL switching. This is one of the main features in AppFuse that separates it from the other "CRUD Generation" frameworks like Ruby on Rails, Trails and Grails. AppFuse is already an application when you start using it, which means code examples are already in your project. Furthermore, because features already exist, the amount of boiler-plate code that most projects need will be eliminated.
In this session, you will learn Seven Simple Reasons to Use AppFuse. If you don't use it to start your own projects, hopefully you will see that it provides much of the boiler-plate code that can be used in Java-based web applications. Since it's Apache Licensed, you're more than welcome to copy/paste any code from it into your own applications.
Also see article published at:
http://www.ibm.com/developerworks/java/library/j-appfuse/index.html
This document summarizes a presentation about the Grails framework. It discusses how Grails allows building modern Java web applications quickly using Groovy and conventions over configuration. Key features highlighted include GORM for object-relational mapping, GSP for views, and integration with Spring and other Java technologies. The document also provides overviews of Grails tags, plugins including Spring Security, and configuration options.
Microservices for the Masses with Spring Boot, JHipster, and JWT - J-Spring 2017Matt Raible
Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk.
We’ll use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!
This document outlines Jenkins best practices, including using plugins to simplify the UI, manage configuration history, mask passwords, use folders to organize jobs, implement jobs with DSL for easier maintenance, run parallel tests with the multijob plugin, integrate branches with pretested integration, and implement pipelines for continuous integration with Jenkins 2.0. Advanced techniques include using Packer, Vagrant, Docker and load balancing for build slaves.
This document discusses Playframework, a Java web framework. It provides an overview of Playframework's features including being a full Java stack, RESTful and SEO friendly design, stateless architecture, and easy scalability. It also covers Playframework's project structure including the model, controller, and view layers. The document mentions Playframework works with common application servers and cloud hosting platforms. It also discusses using Twitter Bootstrap, a popular front-end framework for responsive design and UI components.
Microservices for the Masses with Spring Boot, JHipster, and JWT - Devoxx UK...Matt Raible
Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk.
You'll see how to use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Heroku, Kubernetes, Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!
This document discusses Jenkins best practices, including using plugins to simplify the UI, manage configuration history, rebuild jobs, and mask passwords. It also covers using folders to organize jobs by branch, the job DSL plugin to define jobs programmatically, and artifact repositories to share artifacts between Jenkins instances. More advanced topics include using the multijob plugin for parallel test runs, the pretested integration plugin for branch setup, and integrating pipelines in Jenkins 2.0. The document concludes with bonus techniques like provisioning build slaves with Packer/Vagrant/Docker and load balancing Jenkins slaves.
Tips and criteria for selecting a web presentation framework. The focus is on Java-based frameworks, but the criteria are valid for any platform. From a panel discussion at the Seattle Java User Group (SeaJUG)
Mobile Development with Ionic, React Native, and JHipster - AllTheTalks 2020Matt Raible
Mobile development offers a lot of options. To develop native apps, you can use Java or Kotlin on Android. On iOS, you can use Objective C or Swift. There are other options, too. You can build hybrid mobile apps and Progressive Web Apps (PWAs). Hybrid mobile apps are those created with web technologies (HTML, JavaScript, and CSS) that look like native apps. PWAs have the ability to work offline and act like mobile apps.
In this talk, we'll explore a few different mobile technologies: Ionic 4 (with Angular), React Native, and PWAs. You'll walk away with knowledge of how to build mobile + Spring Boot apps in minutes with JHipster.
* GitHub repo: https://github.com/mraible/mobile-jhipster
* Demo script: https://github.com/mraible/mobile-jhipster/blob/master/demo.adoc
The document provides an overview of the Hibernate framework. It discusses some of the drawbacks of using JDBC for database access, such as needing to manually open and close connections. Hibernate aims to address these issues by providing object-relational mapping and allowing data to flow through an application as objects rather than being converted to text for storage. Some key advantages of Hibernate mentioned are that it supports inheritance, associations and collections, and allows saving derived class objects while also persisting base class data.
Mobile App Development with Ionic, React Native, and JHipster - Connect.Tech ...Matt Raible
Mobile development offers a lot of options. To develop native apps, you can use Java or Kotlin on Android. On iOS, you can use Objective C or Swift. There are other options, too. You can build hybrid mobile apps and Progressive Web Apps (PWAs). Hybrid mobile apps are those created with web technologies (HTML, JavaScript, and CSS) that look like native apps. PWAs have the ability to work offline and act like mobile apps.
In this talk, we'll explore a few different mobile technologies: PWAs, React Native, and Ionic (with Angular). You'll walk away with knowledge of how to build mobile + Spring Boot apps in minutes with JHipster.
* GitHub repo: https://github.com/mraible/mobile-jhipster
* Demo script: https://github.com/mraible/mobile-jhipster/blob/main/demo.adoc
4Developers 2015: Do you think you're doing microservice architecture? - Marc...PROIDEA
This document discusses deploying and managing microservices. It covers topics like using Jenkins to standardize continuous delivery pipelines across services, service discovery with tools like Zookeeper and Consul, implementing consumer-driven contracts for testing service interactions, configuring environments with tools like Puppet and Ansible, and monitoring services through centralized logging and metrics collection. Potential pitfalls discussed include issues with code reuse, using too many technology stacks, and additional management overhead compared to monolithic applications.
Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Sprin...Matt Raible
In this session, you'll learn about recommended patterns for securing your backend APIs, the infrastructure they run on, and your SPAs and mobile apps.
The world is no longer a place where you just need to secure your apps’ UI. You need to pay attention to your dependency pipeline and open source frameworks, too. Once you have the app built, with secure-by-design code, what about the cloud it runs on? Are the servers secure? What about the accounts you use to access them?
If you lock all that sh*t down, how do you codify your solution so you can transport it cloud-to-cloud, or back to on-premises? This session will explore these concepts and many more!
Comparing JVM Web Frameworks - Rich Web Experience 2010Matt Raible
Comparing JVM Web Frameworks Presentation from The Rich Web Experience 2010. Compares many different JVM-based web frameworks, ranks them based on 20 different criteria and compares the Pros, Cons and other stats of the top 5.
What's New in JHipsterLand - Devoxx Poland 2017Matt Raible
JHipster is an application generator that allows you to create monoliths or microservices, based on Spring Boot and Angular. It leverages Spring Cloud for microservices and contains best-of-breed JavaScript and CSS libraries for creating your UI. In this session, you’ll learn about what’s new in JHipster. Topics include Angular 4, Progressive Web Apps, HTTP/2, JUnit 5 and Spring 5.
Monolith Demo: https://github.com/mraible/jhipster4-demo/blob/master/README.adoc
Microservices Demo: https://developer.okta.com/blog/2017/06/20/develop-microservices-with-jhipster
This document discusses Clojure web development and describes a web-based project management system called Trakr that was created using Clojure. Trakr uses a MongoDB database and has a modern friendly UI. The architecture involves a Clojure HTTP server with a Ring middleware pipeline and Compojure routing to map requests to handlers. Testing is done with clojure.test and clojure.contrib.mock. Performance is around 70ms average latency.
How to Win at UI Development in the World of Microservices - THAT Conference ...Matt Raible
You've figured out how to split up your backend services into microservices and scale your teams to the moon! But what about the front-end? Are you still building monoliths for your UI? This session will talk about the history of web frameworks, the microservices explosion, and techniques + frameworks for complementing your microservices with micro frontends. It'll include developer stories from folks implementing micro frontends and recommendations for learning more about them.
Come Sail Away With Me (you guys): Node.js MVC Web API's Using Sails.jsEric Nograles
A slideshow introducing Sails.js as an MVC style framework for Node.js Web API's. Goes over key Sails features and an opinion of "enterprise-style" separation of concerns familiar to ASP .Net MVC and Spring MVC developers. Presented by Eric Nograles @ Orlando Code Camp on March 28, 2015.
Find out the most popular and best Java framework can make your programming easy also cover this benefits time saving, scale-ability, robustness, and security. A framework provides a lot’s of features and integration that the users easily growing his productivity with future development management.
Front End Development for Back End Developers - Devoxx UK 2017Matt Raible
Are you a backend developer that’s being pushed into front end development? Are you frustrated with all JavaScript frameworks and build tools you have to learn to be a good UI developer? If so, this session is for you! We’ll explore the tools of the trade for fronted development (npm, yarn, Gulp, Webpack, Yeoman) and learn the basics of HTML, CSS, and JavaScript. We’ll dive into the intricacies of Bootstrap, Material Design, ES6, and TypeScript. Finally, after getting you up to speed with all this new tech, we’ll show how it can all be found and integrated through the fine and dandy JHipster project.
From GitHub Source to GitHub Release: Free CICD Pipelines For JavaFX AppsBruno Borges
Streamline the building, testing, packaging, and release of your desktop JavaFX applications for all major platforms with simple to use CI/CD Pipelines and GitHub. This session will cover the details of combining GitHub for hosting source code and binaries for Mac OS, Windows and Linux of your application, and how to take advantage of Azure Pipelines plan for Open Source projects. We will learn about using a Maven archetype and a Gradle starter project for JavaFX apps, both ready for CI/CD and how they are configured. Join this talk and get ready to streamline your desktop apps just like your microservices.
The document describes building an automated testing pipeline that is triggered by code pushes to a private GitHub repository. The pipeline uses Jenkins to run tests on a master node and worker nodes, with CloudWatch monitoring CPU usage to trigger scaling out workers. Test and coverage results are stored, a notification is sent to Slack, and if tests pass, the image gets deployed and inspected.
How do you protect a hybrid PaaS-IaaS solution, built entirely in the cloudLorenzo Barbieri
This document discusses strategies for securing cloud resources and applications from various types of attacks. It outlines five hypothetical "strikes" or attack scenarios and the corresponding mitigation and remediation steps. These include protecting resources with infrastructure as code, role-based access control, monitoring, private endpoints, and key management. The document concludes with a recap of seven golden rules for security and an overview of Microsoft's physical and virtual security controls for the Azure cloud platform.
How do you protect a hybrid PaaS-IaaS solution, built entirely in the cloud?Lorenzo Barbieri
Security can be applied at various levels. We’ll see the adventure of two friends building a web solution, but one of them is trying to sabotage from the inside. We’ll see if the loyal friend will succeed in protecting all the work, and how the solution should evolve to be more secure!
This document outlines Jenkins best practices, including using plugins to simplify the UI, manage configuration history, mask passwords, use folders to organize jobs, implement jobs with DSL for easier maintenance, run parallel tests with the multijob plugin, integrate branches with pretested integration, and implement pipelines for continuous integration with Jenkins 2.0. Advanced techniques include using Packer, Vagrant, Docker and load balancing for build slaves.
This document discusses Playframework, a Java web framework. It provides an overview of Playframework's features including being a full Java stack, RESTful and SEO friendly design, stateless architecture, and easy scalability. It also covers Playframework's project structure including the model, controller, and view layers. The document mentions Playframework works with common application servers and cloud hosting platforms. It also discusses using Twitter Bootstrap, a popular front-end framework for responsive design and UI components.
Microservices for the Masses with Spring Boot, JHipster, and JWT - Devoxx UK...Matt Raible
Microservices are all the rage and being deployed by many Java Hipsters. If you’re working on a large team that needs different release cycles for product components, microservices can be a blessing. If you’re working at your VW Restoration Shop and running its online store with your own software, having five services to manage and deploy can be a real pain. Share your knowledge and experience about microservices in this informative and code-heavy talk.
You'll see how to use JHipster (a Yeoman generator) to create Angular + Spring Boot apps on separate instances with a unified front-end. I’ll also show you options for securing your API gateway and individual applications using JWT. Heroku, Kubernetes, Docker, ELK, Spring Cloud, Okta; there will be plenty of interesting demos to see!
This document discusses Jenkins best practices, including using plugins to simplify the UI, manage configuration history, rebuild jobs, and mask passwords. It also covers using folders to organize jobs by branch, the job DSL plugin to define jobs programmatically, and artifact repositories to share artifacts between Jenkins instances. More advanced topics include using the multijob plugin for parallel test runs, the pretested integration plugin for branch setup, and integrating pipelines in Jenkins 2.0. The document concludes with bonus techniques like provisioning build slaves with Packer/Vagrant/Docker and load balancing Jenkins slaves.
Tips and criteria for selecting a web presentation framework. The focus is on Java-based frameworks, but the criteria are valid for any platform. From a panel discussion at the Seattle Java User Group (SeaJUG)
Mobile Development with Ionic, React Native, and JHipster - AllTheTalks 2020Matt Raible
Mobile development offers a lot of options. To develop native apps, you can use Java or Kotlin on Android. On iOS, you can use Objective C or Swift. There are other options, too. You can build hybrid mobile apps and Progressive Web Apps (PWAs). Hybrid mobile apps are those created with web technologies (HTML, JavaScript, and CSS) that look like native apps. PWAs have the ability to work offline and act like mobile apps.
In this talk, we'll explore a few different mobile technologies: Ionic 4 (with Angular), React Native, and PWAs. You'll walk away with knowledge of how to build mobile + Spring Boot apps in minutes with JHipster.
* GitHub repo: https://github.com/mraible/mobile-jhipster
* Demo script: https://github.com/mraible/mobile-jhipster/blob/master/demo.adoc
The document provides an overview of the Hibernate framework. It discusses some of the drawbacks of using JDBC for database access, such as needing to manually open and close connections. Hibernate aims to address these issues by providing object-relational mapping and allowing data to flow through an application as objects rather than being converted to text for storage. Some key advantages of Hibernate mentioned are that it supports inheritance, associations and collections, and allows saving derived class objects while also persisting base class data.
Mobile App Development with Ionic, React Native, and JHipster - Connect.Tech ...Matt Raible
Mobile development offers a lot of options. To develop native apps, you can use Java or Kotlin on Android. On iOS, you can use Objective C or Swift. There are other options, too. You can build hybrid mobile apps and Progressive Web Apps (PWAs). Hybrid mobile apps are those created with web technologies (HTML, JavaScript, and CSS) that look like native apps. PWAs have the ability to work offline and act like mobile apps.
In this talk, we'll explore a few different mobile technologies: PWAs, React Native, and Ionic (with Angular). You'll walk away with knowledge of how to build mobile + Spring Boot apps in minutes with JHipster.
* GitHub repo: https://github.com/mraible/mobile-jhipster
* Demo script: https://github.com/mraible/mobile-jhipster/blob/main/demo.adoc
4Developers 2015: Do you think you're doing microservice architecture? - Marc...PROIDEA
This document discusses deploying and managing microservices. It covers topics like using Jenkins to standardize continuous delivery pipelines across services, service discovery with tools like Zookeeper and Consul, implementing consumer-driven contracts for testing service interactions, configuring environments with tools like Puppet and Ansible, and monitoring services through centralized logging and metrics collection. Potential pitfalls discussed include issues with code reuse, using too many technology stacks, and additional management overhead compared to monolithic applications.
Lock That Shit Down! Auth Security Patterns for Apps, APIs, and Infra - Sprin...Matt Raible
In this session, you'll learn about recommended patterns for securing your backend APIs, the infrastructure they run on, and your SPAs and mobile apps.
The world is no longer a place where you just need to secure your apps’ UI. You need to pay attention to your dependency pipeline and open source frameworks, too. Once you have the app built, with secure-by-design code, what about the cloud it runs on? Are the servers secure? What about the accounts you use to access them?
If you lock all that sh*t down, how do you codify your solution so you can transport it cloud-to-cloud, or back to on-premises? This session will explore these concepts and many more!
Comparing JVM Web Frameworks - Rich Web Experience 2010Matt Raible
Comparing JVM Web Frameworks Presentation from The Rich Web Experience 2010. Compares many different JVM-based web frameworks, ranks them based on 20 different criteria and compares the Pros, Cons and other stats of the top 5.
What's New in JHipsterLand - Devoxx Poland 2017Matt Raible
JHipster is an application generator that allows you to create monoliths or microservices, based on Spring Boot and Angular. It leverages Spring Cloud for microservices and contains best-of-breed JavaScript and CSS libraries for creating your UI. In this session, you’ll learn about what’s new in JHipster. Topics include Angular 4, Progressive Web Apps, HTTP/2, JUnit 5 and Spring 5.
Monolith Demo: https://github.com/mraible/jhipster4-demo/blob/master/README.adoc
Microservices Demo: https://developer.okta.com/blog/2017/06/20/develop-microservices-with-jhipster
This document discusses Clojure web development and describes a web-based project management system called Trakr that was created using Clojure. Trakr uses a MongoDB database and has a modern friendly UI. The architecture involves a Clojure HTTP server with a Ring middleware pipeline and Compojure routing to map requests to handlers. Testing is done with clojure.test and clojure.contrib.mock. Performance is around 70ms average latency.
How to Win at UI Development in the World of Microservices - THAT Conference ...Matt Raible
You've figured out how to split up your backend services into microservices and scale your teams to the moon! But what about the front-end? Are you still building monoliths for your UI? This session will talk about the history of web frameworks, the microservices explosion, and techniques + frameworks for complementing your microservices with micro frontends. It'll include developer stories from folks implementing micro frontends and recommendations for learning more about them.
Come Sail Away With Me (you guys): Node.js MVC Web API's Using Sails.jsEric Nograles
A slideshow introducing Sails.js as an MVC style framework for Node.js Web API's. Goes over key Sails features and an opinion of "enterprise-style" separation of concerns familiar to ASP .Net MVC and Spring MVC developers. Presented by Eric Nograles @ Orlando Code Camp on March 28, 2015.
Find out the most popular and best Java framework can make your programming easy also cover this benefits time saving, scale-ability, robustness, and security. A framework provides a lot’s of features and integration that the users easily growing his productivity with future development management.
Front End Development for Back End Developers - Devoxx UK 2017Matt Raible
Are you a backend developer that’s being pushed into front end development? Are you frustrated with all JavaScript frameworks and build tools you have to learn to be a good UI developer? If so, this session is for you! We’ll explore the tools of the trade for fronted development (npm, yarn, Gulp, Webpack, Yeoman) and learn the basics of HTML, CSS, and JavaScript. We’ll dive into the intricacies of Bootstrap, Material Design, ES6, and TypeScript. Finally, after getting you up to speed with all this new tech, we’ll show how it can all be found and integrated through the fine and dandy JHipster project.
From GitHub Source to GitHub Release: Free CICD Pipelines For JavaFX AppsBruno Borges
Streamline the building, testing, packaging, and release of your desktop JavaFX applications for all major platforms with simple to use CI/CD Pipelines and GitHub. This session will cover the details of combining GitHub for hosting source code and binaries for Mac OS, Windows and Linux of your application, and how to take advantage of Azure Pipelines plan for Open Source projects. We will learn about using a Maven archetype and a Gradle starter project for JavaFX apps, both ready for CI/CD and how they are configured. Join this talk and get ready to streamline your desktop apps just like your microservices.
The document describes building an automated testing pipeline that is triggered by code pushes to a private GitHub repository. The pipeline uses Jenkins to run tests on a master node and worker nodes, with CloudWatch monitoring CPU usage to trigger scaling out workers. Test and coverage results are stored, a notification is sent to Slack, and if tests pass, the image gets deployed and inspected.
How do you protect a hybrid PaaS-IaaS solution, built entirely in the cloudLorenzo Barbieri
This document discusses strategies for securing cloud resources and applications from various types of attacks. It outlines five hypothetical "strikes" or attack scenarios and the corresponding mitigation and remediation steps. These include protecting resources with infrastructure as code, role-based access control, monitoring, private endpoints, and key management. The document concludes with a recap of seven golden rules for security and an overview of Microsoft's physical and virtual security controls for the Azure cloud platform.
How do you protect a hybrid PaaS-IaaS solution, built entirely in the cloud?Lorenzo Barbieri
Security can be applied at various levels. We’ll see the adventure of two friends building a web solution, but one of them is trying to sabotage from the inside. We’ll see if the loyal friend will succeed in protecting all the work, and how the solution should evolve to be more secure!
This document discusses why front end developers are needed. It begins by defining what a front end developer is and outlines some of their typical duties, which include working on the user interface, accessibility, testing, multimedia, design, and optimization of the front end. It notes that while back end developers focus more on the server side, front end developers ensure the client-side code and experience are effective. The document also discusses some of the challenges of front end development like different browsers, mobile environments, and JavaScript frameworks. It emphasizes that user interface and design are important aspects that should not be an afterthought.
This document provides an overview of Google App Engine (GAE), a platform as a service that allows users to run web applications on Google's infrastructure. It discusses key aspects of GAE like language support, automatic scaling, quotas and limits. The document then demonstrates how to set up a basic "Hello World" application on GAE for Java (GAE/J) using Eclipse as the IDE. It shows the project structure, deploying the application to GAE, and potential next steps like using Guice or the Python runtime.
The Hotstar web team attended JSFoo 2017 conference. Here are some of the key takeaways. Some of the technologies excited us and some we believe have a business impact.
Architecting Multitenant SaaS Applications with Azure - Microsoft Ignite The ...Eran Stiller
Multitenancy is a software architecture pattern in which a single instance of software serves multiple groups of users (known as tenants or organizations). Many modern SaaS applications use this pattern to serve their customers with maximum efficiency while maintaining operational costs low. But how do you build a multitenant application right? How do you secure one tenant's information from another tenant's users? How do you keep operational costs low? How do you monitor and manage this stuff?
In this session you will gain architecture practices for architecting multitenant SaaS applications, learnt from migrating real applications to the cloud so that you won't have to learn them the hard way, with implementation tips and tricks on Azure.
Machine learning services with SQL Server 2017Mark Tabladillo
SQL Server 2017 introduces Machine Learning Services with two independent technologies: R and Python. The purpose of this presentation is 1) to describe major features of this technology for technology managers; 2) to outline use cases for architects; and 3) to provide demos for developers and data scientists.
Silverlight 2 with Visual Studio 2008 and Expression BlendCaleb Jenkins
This document provides an overview of Silverlight including its capabilities, development tools, and resources for learning more. It discusses features like media playback, animation, data binding, isolated storage, and networking. Examples of tools mentioned include Visual Studio, Expression Blend, and libraries like WCF and LINQ. Resources recommended for learning Silverlight include tutorials on silverlight.net, books, and developer tools for debugging.
The document discusses using Visual Studio Code for building, optimizing, and deploying Angular applications to Azure using Docker. It provides steps for scaffolding a new Angular app, building for development and production with optimizations, analyzing build outputs, debugging Dockerized apps in VS Code, and deploying built apps to Azure Web Apps from within VS Code using Docker. Key advantages highlighted include great debugging experiences for Node.js and Docker apps, useful Azure and Node.js extensions, and an integrated Docker development experience.
Docker Deep Dive Understanding Docker Engine Docker for DevOpsMehwishHayat3
Up and running with docker, How docker engine works, Why use Docker as a web developer, How Docker help us achieving consistent environment for developing web app, How Docker swarm help us a DevOps, What are namespace and control groups, How images are different from container, What is content addressable storage, what is Fat mainfest and image manifest, Dot cloud and Docker.
Technical Deep Dive Into Atlassian's New Apps Performance Testing FrameworkAtlassian
In this session, Oleksandr Metelytsa and Benjamin Magro will take a technical deep dive into Atlassian's new apps performance testing framework to see how it works, how it can be used to test your Data Center applications, where it is heading in the future, and what we will require for Data Center apps performance testing going forward.
From the Venetian Hotel in Las Vegas, Ray Ozzie, Chief Software Architect, will be joined by Corporate Vice President, Scott Guthrie and General Manager, Dean Hachamovitch to demonstrate the latest technologies built for Microsoft's Web platform. Ray will lay out his vision of the future to this audience of Web designers and developers from around the world
Configuration Management and Transforming Legacy Applications in the Enterpri...Docker, Inc.
Share the continuity of Société Générale's journey with Docker Enterprise from different points of view, from executives to devops, with CD platform as an enabler. Creating a Dockerfile that runs a container on a developer's laptop is pretty straightforward. But extending that to stacks of containers running on a dozen environments (development, integration, testing, staging, production, etc.) with different configuration and topologies can be a challenge. This talk will cover aspects of our journey to Docker Enterprise:
What configuration should go in an image?
Where to put different types of configuration? Images, environment variables, entrypoint, ...?
How to store assets for building images and configuration for deployment in version control.
We will discuss how Société Générale has implemented these, and what we plan next for Docker Enterprise deployment.
The document discusses building APIs with Django and Django Rest Framework to connect to frontend frameworks like React. It describes setting up a Django project with DRF to create RESTful API endpoints for resources like blog posts. It also covers adding React to fetch and display data from the Django API, with the frontend and backend running on different ports. Key aspects covered include serializers, HTTP verbs and status codes, endpoints, and setting up the basic React app to consume the API.
The document discusses building APIs with Django and Django Rest Framework to connect to frontend frameworks like React. It describes how to add DRF to an existing Django project, use serializers to transform models into JSON, and configure CORS headers to allow cross-domain requests. It also provides an overview of setting up a React frontend that fetches from the DRF API and maps over the response to display blog posts.
Trusted by Default: The Forge Security & Privacy ModelAtlassian
Security and trust have become increasingly important requirements for our customers in Cloud. We’re working to make it easier for you to build and maintain secure apps for Atlassian products.
In this session, Engineering Team Lead Dugald Morrow and Principal Product Manager Joël Kalmanowicz will explain how security and trust have been baked into the Forge framework and the benefits the platform can offer you and your users. Learn how much less work it can be to build trusted apps customers will love on Forge by going deep on the safeguards we’re putting in place.
Developers or attendees with some software security experience will get the most out of this session.
Microservices Architecture for Web Applications using Amazon AWS CloudMitoc Group
Large Web Applications are by nature resource intensive, expensive to customize, and difficult to manage at scale. What if we can change this perception and help developers architect a web application that is high performance and low cost, high security and low maintenance? This talk will focus on 3 key topics: 1) serverless infrastructure, 2) microservices architecture and 3) hands-on demos. We will describe a serverless solution and propose a scalable architecture that will help Generator Hub community to adopt cloud-native approach without huge efforts or expensive resources allocation.
(ARC402) Deployment Automation: From Developers' Keyboards to End Users' Scre...Amazon Web Services
Some of the best businesses today are deploying their code dozens of times a day. How? By making heavy use of automation, smart tools, and repeatable patterns to get process out of the way and keep the workflow moving. Come to this session to learn how you can do this too, using services such as AWS OpsWorks, AWS CloudFormation, Amazon Simple Workflow Service, and other tools. We'll discuss a number of different deployment patterns, and what aspects you need to focus on when working toward deployment automation yourself.
Similar to How do you protect a hybrid PaaS-IaaS solution, built entirely in the cloud? (20)
Microsoft Ignite Milan: Copilot Adoption In ItalyLorenzo Barbieri
The document discusses Microsoft's AI assistant Copilot and its various applications. It outlines Copilot's capabilities across web, productivity, business, analytics, security, development, and Azure administration domains. It then discusses security and information protection of commercial data with Copilot in Italy along with licensing, Office versions, and handling pressure through imagination. It ends by providing a link to an Azure meetup in Milan and the author's contact details.
Can Santa Cloud survive the Generative AI revolution?Lorenzo Barbieri
This document discusses how Santa Cloud, Santa Claus' cloud computing business, could be impacted by generative AI technology. It notes that Santa's data collection practices may violate GDPR regulations. It then proposes adopting a new identity called Leonardo.Ai and using generative AI tools like Copilot to create content such as songs, videos, and voices. The document suggests both opportunities and risks of generative AI, and calls for human and AI collaboration to create a better future. It concludes by wishing readers a merry Christmas and happy new year.
Want to learn how to use OpenAI language models, including GPT-4, GPT-35-Turbo, and Embedings, to create innovative and smart applications? Join this event and learn how Azure OpenAI gives you access to the world’s most advanced language models with a simple interface and optimal scalability. You’ll see how to use Azure OpenAI Studio to explore and optimize models, and how to integrate them into your code.
Working remotely can present many challenges for programming and development teams. Luckily, there are several tools for remote software developers that can overcome these obstacles to keep collaboration and productivity high and costs and problems low.
We will discuss about:
• GitHub Copilot
• Microsoft Dev Box
• GitHub Codespaces
• Visual Studio Live Share
• Azure DevTest Labs
Personal Branding for Developers @ PyCon Italy 2023Lorenzo Barbieri
This document provides tips for developers to build their personal brand. It emphasizes that developers should focus on developing expertise in their field and understanding their audience. A personal brand is more than certifications or awards and should be defined by how one shares their knowledge with others. The document recommends blogging, speaking, writing, and participating in communities as ways to develop a personal brand and stand out in the market. Developers are encouraged to maintain brand consistency across platforms and regularly share valuable content with others.
The document provides tips and advice for effective public speaking. It emphasizes telling stories over self-introductions to engage audiences, rehearsing to feel comfortable, using power poses to manage nerves, adapting presentations for cultural differences, managing time effectively, and ensuring diversity and inclusion in speaker selections and language. The overall message is that public speaking is a learnable skill and speakers should focus on sharing value with audiences through well-prepared stories and conversations.
This document compares and contrasts Azure DevOps and GitHub for software development. It outlines that both can be used for cloud or on-premises projects and have different paid tiers. It also describes that partners can work with GitHub directly or through the Microsoft partner program. Key features of GitHub like issues, projects, discussions, codespaces, and actions are summarized. It emphasizes that Azure DevOps and GitHub can be used together for development.
Codemotion DevCast: App Modernization in the CloudLorenzo Barbieri
This document discusses app modernization and how moving applications to the cloud on Azure can provide benefits. It outlines the app modernization continuum from refactoring existing applications to rebuilding new serverless applications. Key techniques discussed are containers, microservices, and serverless computing. Containers can help with modernization by allowing existing applications to lift and shift to containers for improved scalability. Microservices and serverless options further improve agility, productivity and operational efficiency. The document emphasizes that Azure supports a hybrid cloud approach and provides services for infrastructure, platforms and serverless applications.
Azure Academyadi: Introduction to GitHub and AzureDevOpsLorenzo Barbieri
This document summarizes Azure DevOps and GitHub integration capabilities. It notes that Azure DevOps is Microsoft's internal DevOps tool used by over 90,000 employees, processing high volumes of code commits, builds, work items, and tests each month. It then outlines how Azure DevOps integrates with GitHub to enable continuous delivery across the development lifecycle from planning to deployment. Features like dependency tracking, automated security alerts, and secret scanning are highlighted. Resources for learning more about Azure DevOps, DevOps practices, and trunk-based development are also provided.
Slides (in English, only the first one in Italian) from my session at .NET Conf 2020 (https://dotnetconf.it/) about Kubernetes (AKS) versus Azure App Service for .NET Developers
The document provides tips for developers on personal branding, including knowing your audience and niche, being consistent in writing and speaking engagements, using multiple platforms like blogs, social media, and communities to engage others, and always including contact details and a clear call to action. Personal branding is about going beyond certifications and focusing on providing value to others through content, demos, and being part of the community. It is important to focus efforts using the Pareto principle and time management.
The document provides tips for preparing an effective pitch presentation. It recommends starting with the value proposition and telling a story that shows value. Presenters should ask a question that reveals value and explain why they are there beyond just their title. It also advises to memorize only the beginning and end of the presentation and to think about accessibility. Presenters are encouraged to find stories from sources like Dilbert comics and Wikipedia.
The document discusses different cloud computing technologies including IaaS, CaaS, PaaS, and FaaS. IaaS provides virtual machines and infrastructure hosting. CaaS focuses on container platforms like Kubernetes. PaaS offers application platforms like Azure App Service. FaaS enables serverless computing through functions and logic apps that scale to zero. The document then discusses advantages of Kubernetes and containers for portability, density, and rapid scaling of applications.
This document discusses how to create accessible PowerPoint presentations. It provides tips on using high color contrast, adding alternative text descriptions, choosing accessible slide layouts and text blocks, and checking the reading order. Additional recommendations include using captions and audio descriptions for videos, running the Accessibility Checker, and speaking at an appropriate pace while distributing needed materials for accessibility during presentations.
Kubernetes VS. App Service: When the orchestrator challenges the platformLorenzo Barbieri
The document discusses Kubernetes and how it can be used with Azure to deploy and manage containerized applications. It provides an overview of Kubernetes and how it works, then discusses how Azure services like Azure Kubernetes Service (AKS) can simplify tasks like provisioning clusters, upgrading, scaling, and providing additional capabilities for development, deployment, security and management without having to manage the underlying infrastructure.
Public Speaking For Geeks: Work from Home Edition!Lorenzo Barbieri
Speaking in public is not easy, especially for geeks, that tend to be too technical, or too shy, or too something...
Speaking in public REMOTELY is even worse.
In this session, we'll start with some basic tips, and we'll see how to dramatically improve our results using well-defined techniques.
Public speaking skills are not useful to conference speakers only, and everybody needs to improve them, especially geeks working from home!
Public Speaking for Geeks @ MS Ignite The Tour MilanLorenzo Barbieri
The new version of the "world-famous" Public Speaking for Geeks session. This is the version I did at Microsoft Ignite The Tour in Milan, with a lot of fresh content, including diversity & inclusion topics.
Driving Business Innovation: Latest Generative AI Advancements & Success StorySafe Software
Are you ready to revolutionize how you handle data? Join us for a webinar where we’ll bring you up to speed with the latest advancements in Generative AI technology and discover how leveraging FME with tools from giants like Google Gemini, Amazon, and Microsoft OpenAI can supercharge your workflow efficiency.
During the hour, we’ll take you through:
Guest Speaker Segment with Hannah Barrington: Dive into the world of dynamic real estate marketing with Hannah, the Marketing Manager at Workspace Group. Hear firsthand how their team generates engaging descriptions for thousands of office units by integrating diverse data sources—from PDF floorplans to web pages—using FME transformers, like OpenAIVisionConnector and AnthropicVisionConnector. This use case will show you how GenAI can streamline content creation for marketing across the board.
Ollama Use Case: Learn how Scenario Specialist Dmitri Bagh has utilized Ollama within FME to input data, create custom models, and enhance security protocols. This segment will include demos to illustrate the full capabilities of FME in AI-driven processes.
Custom AI Models: Discover how to leverage FME to build personalized AI models using your data. Whether it’s populating a model with local data for added security or integrating public AI tools, find out how FME facilitates a versatile and secure approach to AI.
We’ll wrap up with a live Q&A session where you can engage with our experts on your specific use cases, and learn more about optimizing your data workflows with AI.
This webinar is ideal for professionals seeking to harness the power of AI within their data management systems while ensuring high levels of customization and security. Whether you're a novice or an expert, gain actionable insights and strategies to elevate your data processes. Join us to see how FME and AI can revolutionize how you work with data!
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...alexjohnson7307
Predictive maintenance is a proactive approach that anticipates equipment failures before they happen. At the forefront of this innovative strategy is Artificial Intelligence (AI), which brings unprecedented precision and efficiency. AI in predictive maintenance is transforming industries by reducing downtime, minimizing costs, and enhancing productivity.
A Comprehensive Guide to DeFi Development Services in 2024Intelisync
DeFi represents a paradigm shift in the financial industry. Instead of relying on traditional, centralized institutions like banks, DeFi leverages blockchain technology to create a decentralized network of financial services. This means that financial transactions can occur directly between parties, without intermediaries, using smart contracts on platforms like Ethereum.
In 2024, we are witnessing an explosion of new DeFi projects and protocols, each pushing the boundaries of what’s possible in finance.
In summary, DeFi in 2024 is not just a trend; it’s a revolution that democratizes finance, enhances security and transparency, and fosters continuous innovation. As we proceed through this presentation, we'll explore the various components and services of DeFi in detail, shedding light on how they are transforming the financial landscape.
At Intelisync, we specialize in providing comprehensive DeFi development services tailored to meet the unique needs of our clients. From smart contract development to dApp creation and security audits, we ensure that your DeFi project is built with innovation, security, and scalability in mind. Trust Intelisync to guide you through the intricate landscape of decentralized finance and unlock the full potential of blockchain technology.
Ready to take your DeFi project to the next level? Partner with Intelisync for expert DeFi development services today!
Trusted Execution Environment for Decentralized Process MiningLucaBarbaro3
Presentation of the paper "Trusted Execution Environment for Decentralized Process Mining" given during the CAiSE 2024 Conference in Cyprus on June 7, 2024.
Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API?
Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose?
Which one is cheapest? Which one is fastest? Which one will scale to meet our needs?
Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!
Ivanti’s Patch Tuesday breakdown goes beyond patching your applications and brings you the intelligence and guidance needed to prioritize where to focus your attention first. Catch early analysis on our Ivanti blog, then join industry expert Chris Goettl for the Patch Tuesday Webinar Event. There we’ll do a deep dive into each of the bulletins and give guidance on the risks associated with the newly-identified vulnerabilities.
Monitoring and Managing Anomaly Detection on OpenShift.pdfTosin Akinosho
Monitoring and Managing Anomaly Detection on OpenShift
Overview
Dive into the world of anomaly detection on edge devices with our comprehensive hands-on tutorial. This SlideShare presentation will guide you through the entire process, from data collection and model training to edge deployment and real-time monitoring. Perfect for those looking to implement robust anomaly detection systems on resource-constrained IoT/edge devices.
Key Topics Covered
1. Introduction to Anomaly Detection
- Understand the fundamentals of anomaly detection and its importance in identifying unusual behavior or failures in systems.
2. Understanding Edge (IoT)
- Learn about edge computing and IoT, and how they enable real-time data processing and decision-making at the source.
3. What is ArgoCD?
- Discover ArgoCD, a declarative, GitOps continuous delivery tool for Kubernetes, and its role in deploying applications on edge devices.
4. Deployment Using ArgoCD for Edge Devices
- Step-by-step guide on deploying anomaly detection models on edge devices using ArgoCD.
5. Introduction to Apache Kafka and S3
- Explore Apache Kafka for real-time data streaming and Amazon S3 for scalable storage solutions.
6. Viewing Kafka Messages in the Data Lake
- Learn how to view and analyze Kafka messages stored in a data lake for better insights.
7. What is Prometheus?
- Get to know Prometheus, an open-source monitoring and alerting toolkit, and its application in monitoring edge devices.
8. Monitoring Application Metrics with Prometheus
- Detailed instructions on setting up Prometheus to monitor the performance and health of your anomaly detection system.
9. What is Camel K?
- Introduction to Camel K, a lightweight integration framework built on Apache Camel, designed for Kubernetes.
10. Configuring Camel K Integrations for Data Pipelines
- Learn how to configure Camel K for seamless data pipeline integrations in your anomaly detection workflow.
11. What is a Jupyter Notebook?
- Overview of Jupyter Notebooks, an open-source web application for creating and sharing documents with live code, equations, visualizations, and narrative text.
12. Jupyter Notebooks with Code Examples
- Hands-on examples and code snippets in Jupyter Notebooks to help you implement and test anomaly detection models.
Best 20 SEO Techniques To Improve Website Visibility In SERPPixlogix Infotech
Boost your website's visibility with proven SEO techniques! Our latest blog dives into essential strategies to enhance your online presence, increase traffic, and rank higher on search engines. From keyword optimization to quality content creation, learn how to make your site stand out in the crowded digital landscape. Discover actionable tips and expert insights to elevate your SEO game.
Main news related to the CCS TSI 2023 (2023/1695)Jakub Marek
An English 🇬🇧 translation of a presentation to the speech I gave about the main changes brought by CCS TSI 2023 at the biggest Czech conference on Communications and signalling systems on Railways, which was held in Clarion Hotel Olomouc from 7th to 9th November 2023 (konferenceszt.cz). Attended by around 500 participants and 200 on-line followers.
The original Czech 🇨🇿 version of the presentation can be found here: https://www.slideshare.net/slideshow/hlavni-novinky-souvisejici-s-ccs-tsi-2023-2023-1695/269688092 .
The videorecording (in Czech) from the presentation is available here: https://youtu.be/WzjJWm4IyPk?si=SImb06tuXGb30BEH .
Freshworks Rethinks NoSQL for Rapid Scaling & Cost-EfficiencyScyllaDB
Freshworks creates AI-boosted business software that helps employees work more efficiently and effectively. Managing data across multiple RDBMS and NoSQL databases was already a challenge at their current scale. To prepare for 10X growth, they knew it was time to rethink their database strategy. Learn how they architected a solution that would simplify scaling while keeping costs under control.
Introduction of Cybersecurity with OSS at Code Europe 2024Hiroshi SHIBATA
I develop the Ruby programming language, RubyGems, and Bundler, which are package managers for Ruby. Today, I will introduce how to enhance the security of your application using open-source software (OSS) examples from Ruby and RubyGems.
The first topic is CVE (Common Vulnerabilities and Exposures). I have published CVEs many times. But what exactly is a CVE? I'll provide a basic understanding of CVEs and explain how to detect and handle vulnerabilities in OSS.
Next, let's discuss package managers. Package managers play a critical role in the OSS ecosystem. I'll explain how to manage library dependencies in your application.
I'll share insights into how the Ruby and RubyGems core team works to keep our ecosystem safe. By the end of this talk, you'll have a better understanding of how to safeguard your code.
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...Tatiana Kojar
Skybuffer AI, built on the robust SAP Business Technology Platform (SAP BTP), is the latest and most advanced version of our AI development, reaffirming our commitment to delivering top-tier AI solutions. Skybuffer AI harnesses all the innovative capabilities of the SAP BTP in the AI domain, from Conversational AI to cutting-edge Generative AI and Retrieval-Augmented Generation (RAG). It also helps SAP customers safeguard their investments into SAP Conversational AI and ensure a seamless, one-click transition to SAP Business AI.
With Skybuffer AI, various AI models can be integrated into a single communication channel such as Microsoft Teams. This integration empowers business users with insights drawn from SAP backend systems, enterprise documents, and the expansive knowledge of Generative AI. And the best part of it is that it is all managed through our intuitive no-code Action Server interface, requiring no extensive coding knowledge and making the advanced AI accessible to more users.
Generating privacy-protected synthetic data using Secludy and MilvusZilliz
During this demo, the founders of Secludy will demonstrate how their system utilizes Milvus to store and manipulate embeddings for generating privacy-protected synthetic data. Their approach not only maintains the confidentiality of the original data but also enhances the utility and scalability of LLMs under privacy constraints. Attendees, including machine learning engineers, data scientists, and data managers, will witness first-hand how Secludy's integration with Milvus empowers organizations to harness the power of LLMs securely and efficiently.
Generating privacy-protected synthetic data using Secludy and Milvus
How do you protect a hybrid PaaS-IaaS solution, built entirely in the cloud?
1. HOW DO YOU PROTECT A
HYBRID PA AS-IA AS
SOLUTION, BUILT ENTIRELY
IN THE CLOUD?
# G LO B A L A Z U R E
# A Z U R E Z U R I C H
lorenzo.barbieri@microsoft.com
@_geniodelmale
2. EVERYTHING STARTS WITH A “GOOD”
ARCHITECTURE
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
RG for
- Dev-Test
- Production
3. 1ST STRIKE
The case of
disappearing
resourcesAttack
one!
Destro
y ‘em
all!
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
RG for
- Dev-Test
- Production
4. MITIGATION
Infrastructure as
Code:
• Script everything
• Backup everything
DevOps
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
RG for
- Dev-Test
- Production
6. 2ND STRIKE
The case of
unexpected
load
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
Attack
two…o…o…
oooo!
$$$
$RG for
- Dev-Test
- Production
7. MITIGATION
o Alert rules and
monitoring
o web.config based
IP restriction
o Functions in App
Service Plan
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
RG for
- Dev-Test
- Production
8. REMEDIATION
o Web App Firewall
o API Management
o <NEW> Azure
DDOS Protections
for VNET
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
RG for
- Dev-Test
- Production
9. 3RD STRIKE
The case of
data and
storage loss
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Attack
three!
I know
your
secrets!
Photo resize
+web.config
RG for
- Dev-Test
- Production
10. MITIGATION
o Key rotation
o Least user
privilege (DB)
o Alert
Web UI
Users
Photos URLs
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
RG for
- Dev-Test
- Production
11. REMEDIATION
o SQL DB Firewall
o VNET Storage
Web UI
Users
Photos URLs
+SQL DB Firewall
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
o Handle Disconnect
RG for
- Dev-Test
- Production
12. 4TH STRIKE
The case of
being Gitted
Web UI
Users
Photos URLs
+SQL DB Firewall
RAW Photos
Thumbnails
Watermarking
Fourth
Attack!
Keys
from the
octocat!
Photo resize
+web.config
RG for
- Dev-Test
- Production
13. REMEDIATION
o Move all the keys to
a secure path
o Use Team Build to set
them before
deployment
o Azure Key Vault
o Managed Service
Identity (preview)
Web UI
Users
Photos URLs
+SQL DB Firewall
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
?
RG for
- Dev-Test
- Production
14. >_
SSH
5TH STRIKE
The case of
remote
connections
Web UI
Users
Photos URLs
+SQL DB Firewall
RAW Photos
Thumbnails
Watermarking
Remote
Attack!
Photo resize
+web.config
>_
SSH
RG for
- Dev-Test
- Production
15. REMEDIATION
o Network Security
Groups
Web UI
Users
Photos URLs
+SQL DB Firewall
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
>_
SSH
RG for
- Dev-Test
- Production
16. A BETTER ARCHITECTURE
Web UI
Users
Photos URLs
+SQL DB Firewall
RAW Photos
Thumbnails
Watermarking
Photo resize
+web.config
RG for
- Dev-Test
- Production
17. RECAP – THE 7 GOLDEN RULES
• Script everything
• Backup everything
• Least user privilege
• Trust no one
• Monitor everything
• Assume cloud failure
• Protect your secrets
19. RESOURCES
• “Parts Unlimited” sample site with telemetry and fault injection:
– https://microsoft.github.io/PartsUnlimited/
• The “bible of Chaos Engineering”: http://principlesofchaos.org/
• Only for the “Brave”, Netflix Chaos Monkey integrated with Spinnaker:
https://github.com/Netflix/chaosmonkey
• Cloud Bedlam: https://github.com/GitTorre/CloudBedlamLinux/tree/dotnet-core
20. THANK YOU VERY MUCH!
• Feedbacks are important!
• Tweet: @_geniodelmale #GlobalAzure #AzureZurich
or send me an email
lorenzo.barbieri@microsoft.com
@_geniodelmale