Blog and updates

Latest news

Keeping secrets in AWS

The ability to keep secrets is very important on the internet. There is always someone who tries to get access to anything that is available. A common way to keep…

Are you DROWNing?

  Today a new SSL attack was released named DROWN Attack. DROWN stands for Decrypting RSA with Obsolete and Weakened eNcryption. You can read all the nasty details here DROWN Attack (CVE-2016-0800) To protect against DROWN,…

I Encrypt, therefore I Am

In this age of global surveillance and spying, encrypting communications has become the standard. Companies, big and small, are finally taking the necessary steps to encrypt all their traffic traversing…

Auditing Automation

The use of automation has fundamentally changed the IT landscape and made us more efficient in managing our increasingly complex environments. In this post I will explore the benefits and…

Stranded! Has s/y Credit Card sailed?

  A couple of weeks in to the vacation I feel that I'm doing things that I normally don't. Not all that uncommon, the Finnish summer thus far has provided us…

Riding the Automation Paradigm Shift?

I have been thinking about and experimenting with automation tools quite a bit for the last year, gradually envisioning the business value of infrastructure automation and subsequently trying to evangelize…

Automation + Security = False?

Those who know me have seen/heard me rant and rave about automation, automation, automation like a crazy Steve Ballmer for the last few years and probably wondered what this "Security…

SSL and TLS update

If you are running a PCI-DSS compliant shop, then FREAK and POODLE might have an impact on your life.Read a good summary about the recently published PCI-DSS version 3.1 here…