What is DevSecOps (or DevOpsSec, SecDevOps, or rugged DevOps)?

0 Comments

Updated 2/10/22

Answer
DevSecOps is the integration of security practices with DevOps.  DevOps may be a culture of automation (as Stackify says), a blend of disciplines (development and operations), or a key word in a job title (e.g., DevOps Engineer or DevOps Architect).  DevSecOps seeks to rapidly integrate security measures into development and operations and avoid security specialists working in separate and relatively isolated teams. 

Continue reading “What is DevSecOps (or DevOpsSec, SecDevOps, or rugged DevOps)?”

What Is the Difference between Erasure Coding and Negative Coding?

0 Comments

Question
Erasure coding versus negative coding: what is the difference?

Answer
In the verbose output of a Hadoop or mapred job, you may have seen “INFO mapreduce.JobResourceUploader: Disabling Erasure Coding for path:”

Erasure coding is a fault-tolerant storage mechanism.  Like replication the usable capacity of the disks participating in such a mechanism is not fully utilized as in a RAID 0 configuration. 

Continue reading “What Is the Difference between Erasure Coding and Negative Coding?”

Are There Similarities or Differences between Negative Coding and Throw-away Prototyping?

0 Comments

Question
What is the difference between negative coding and throw-away prototyping?

Answer
“Plan to throw one away…” -Frederick P. Brooks, Jr. (Taken from page 266 of The Mythical Man-Month).

Both negative coding and throw-away prototyping involve eliminating lines of code.  But this is the only similarity they have.  Negative coding is contrasted from throw-away prototyping in that the former is a good practice for production systems and long-term use whereas the latter is designed to be temporary. 

Continue reading “Are There Similarities or Differences between Negative Coding and Throw-away Prototyping?”

What Is the Difference between Integrity and Availability in the CIA Triad?

0 Comments

Updated on 12/26/18

Problem scenario
I.T. security concerns itself with confidentiality, integrity and availability.  These three categories are concepts which help professionals prioritize and crystallize what to secure and how to secure it.

In the context of computer security, the CIA triad (confidentiality, integrity and availability) is commonly used.  How could data be available if it did not have integrity?  What is the difference between integrity and availability?

Continue reading “What Is the Difference between Integrity and Availability in the CIA Triad?”

How Will Trends in DevOps and Automation Affect SDETs?

0 Comments

Question
Will current trends in DevOps and automation affect the role SDETs play?

Answer
If you want a definition of an SDET (and its etymology), see this posting. (As of 9/2/19, Wikipedia has no definition of the job title SDET.) If you Google the phrase “devops venn diagram” for images you will not see pictures of merely two overlapping circles with one circle representing “development” and another representing “operations.”  You will see DevOps in the middle of an intersection of three circles — one of the circles is also QA! 

Continue reading “How Will Trends in DevOps and Automation Affect SDETs?”

What Is an SDET?

0 Comments

Question
What is an SDET and where did the term originate?

Answer
The book How We Test Software at Microsoft says that the formal title for a software tester at Microsoft is “Software Development Engineer in Test, or SDET” (page 23).  This SDET acronym (free of punctuation) was adopted in 2005 (page 24 of the above referenced book). Microsoft’s adoption of SDET gave this acronym recognition and serious meaning given the company’s leadership in the industry. 

Continue reading “What Is an SDET?”

How Do You Learn More About “Low Latency Programming”?

0 Comments

Problem scenario
You want to learn more about low latency programming for working at a hedge fund company.  Where do you begin?

Solution
An Amazon search for “low latency programming” brings up books that could be very useful for other high-paying I.T. jobs in big data such as an Apache Thrift book or a book for Building a Columnar Database on RAMCloud

Continue reading “How Do You Learn More About “Low Latency Programming”?”

Can SSH Work between a Linux Server and a Windows Client When the Window’s Machine Has Inbound Port 22 Traffic Blocked?

0 Comments

Question
Can SSH work between a Linux server and a Windows client when the Window’s machine has inbound port 22 traffic blocked?

Answer
Yes.  Some VPN tunnels initiated on a Windows machine block inbound port 22 traffic (but not all).  Regardless of whether a firewall or VPN tunnel prevents inbound connections over port 22 to a Windows machine, you can make establish an  SSH connection over port 22 from a Windows machine.  

Continue reading “Can SSH Work between a Linux Server and a Windows Client When the Window’s Machine Has Inbound Port 22 Traffic Blocked?”