Back to blog

Follow and Subscribe

All blog posts

Page 22

  • QUIC is now RFC 9000

    Jana Iyengar

    QUIC version 1 is officially formalized, and QUIC deployments will now move away from using temporary draft versions to the newly minted version 1.

    Engineering
    Industry insights
  • AAPI Heritage Month: Asian Tech Experiences | Fastly

    Stephanie Schoch

    As part of May’s Asian American and Pacific Islander (AAPI) Heritage Month, we hosted a panel of Asian leaders from tech organizations that reflected on ways their cultural backgrounds impacted their career journeys and ascent into leadership roles.

    Culture
  • Building on top of OAuth at the edge

    Dora Militaru, Andrew Betts

    Authentication is one of the most obvious uses for edge computing. Understanding who your users are as early and as close as possible to their location yields powerful customizations and speedy responses. But there's more than one way to think about how to apply an authentication scheme at the edge.

    Compute
  • Answers to your top Kubernetes security questions

    Brendon Macaraeg

    As Kubernetes has become widespread for container orchestration needs, it’s natural for security questions to arise. Here are answers to the Kubernetes questions we hear most often.

    Security
  • Prevent Wasm Compiler Bugs Early | Fastly

    iximeow, Chris Fallin

    We recently discovered a compiler bug in part of the WebAssembly compiler that we use for Compute@Edge, that could have allowed a WebAssembly module to access memory outside of its sandboxed heap. But because of the people, processes, and tools we have in place, the bug was caught and patched on our infrastructure before it was exploited.

    Security
    WebAssembly
  • Memory flaw in Cranelift module

    Fastly Security Research Team

    The bug identified in the Cranelift x64 backend performs a sign-extend instead of a zero-extend on a value loaded from the stack, when the register allocator reloads a spilled integer value narrower than 64 bits. This interacts poorly with another optimization: the instruction selector elides a 32-to-64-bit zero-extend operator when we know that an instruction producing a 32-bit value actually zeros the upper 32 bits of its destination register. Hence, the x64 compiler relies on these zeroed bits, but the type of the value is still i32, and the spill/reload reconstitutes those bits as the sign extension of the i32’s MSB.

    Security
  • PayPal: secure payments at the edge | Fastly

    Lindsay Morris

    Online payments giant PayPal uses Fastly’s edge platform to deliver a more secure, faster, and more reliable user experience at a time when digital payments are surging.

    Customers
    Compute
  • Saving time and reducing rework with DRY code

    Deanna Barshop

    Following the DRY principle isn’t just for engineers. It also cuts the time it takes to make updates in multiple places and reduces errors for our documentation team.

    Engineering
  • Why Fastly Changed its Control Panel Design

    Jennifer Fleming

    Over the past few months, we’ve rolled out a series of design improvements focused on text readability, easing eye-strain, and providing a seamless brand experience.

    Product
  • Creating an Efficient Language with Zig | Fastly

    Hannah Aubry

    Zig is a general purpose programming language, meaning that if you have in front of you something that looks like a Von Neumann-ish, Turing-complete machine, you should be able to comfortably program it with Zig. Lately there has been a lot of interest in two such (virtual) machines: BPF and WebAssembly.

    Engineering
    WebAssembly
  • Introducing GitHub Actions for Compute

    Kailan Blanks

    GitHub Actions for Compute allow you to transition from a manually deployed application to a fully automated deployment workflow with ease and wrap the Fastly CLI to provide an easy way to keep your application up to date.

    Compute
  • New ways to compose content at the edge with Compute

    Andrew Betts

    It's always been possible to create content programmatically, and with the advent of our serverless compute environment, we've made it possible to create and transform content more efficiently and powerfully than ever before.

    WebAssembly
    Compute
  • More is less: stop adding to your security tool technical debt

    Brendon Macaraeg

    Throwing new security tools at new threats results in scattershot protection and builds technical debt. Organizations need uniform protection for applications and APIs, regardless of where they live.

    Security
  • API and ATO Security Challenge Addressed | Fastly

    Brendon Macaraeg

    New Fastly next-gen WAF dashboards surface security telemetry from more than 20 new signals for advanced attack scenarios, such as account takeover, credit card validation, and password reset.

    Security
    Observability
  • Using Kinesis Data Streams

    Haley Lenner

    Fastly now offers logging support for Amazon Kinesis Data Streams, as well as AWS Identity and Access Management (IAM) functionality for S3 and Kinesis logging endpoints.

    Product
    Observability
  • Compute: porting the iconic video game DOOM

    Justin Liew

    id Software’s DOOM has become one of the most-ported games in history. It felt like a perfect project to port to Compute, built on our serverless compute environment, to experiment with different applications of the product.

    Product
    + 2 more
  • Fastly and Okta partner to lock down layer 7

    Sean Leach

    Layer 7 is a primary battleground for web application and API security. Fastly and Okta have partnered together to share threat intelligence, so security and development teams can better protect their systems.

    Security
    Company news
  • Compute@Edge: Serverless Insights by Company | Fastly

    Kimmie Nguyen

    Vox Media, Mux, and PerimeterX share how Compute is unlocking performance, agility, and creativity across their organizations.

    Customers
    Compute
  • Building Security Mindset in Engineering

    Kevin Rollinson

    Explore how leaders from both sides of the aisle have built thriving secure DevOps cultures by putting trust in people first.

    Security
    DevOps
  • You asked, we delivered: Terraform support for TLS is here

    Joe Hoffend, Sudhir Patamsetti

    Teams can now automate their Fastly TLS workflows through Terraform — including issuing certificates, retrieving TLS details, and performing other updates.

    Security
    Product