All blog posts
Page 22
-
QUIC is now RFC 9000
Jana Iyengar
QUIC version 1 is officially formalized, and QUIC deployments will now move away from using temporary draft versions to the newly minted version 1.
EngineeringIndustry insights -
AAPI Heritage Month: Asian Tech Experiences | Fastly
Stephanie Schoch
As part of May’s Asian American and Pacific Islander (AAPI) Heritage Month, we hosted a panel of Asian leaders from tech organizations that reflected on ways their cultural backgrounds impacted their career journeys and ascent into leadership roles.
Culture -
Building on top of OAuth at the edge
Dora Militaru, Andrew Betts
Authentication is one of the most obvious uses for edge computing. Understanding who your users are as early and as close as possible to their location yields powerful customizations and speedy responses. But there's more than one way to think about how to apply an authentication scheme at the edge.
Compute -
Answers to your top Kubernetes security questions
Brendon Macaraeg
As Kubernetes has become widespread for container orchestration needs, it’s natural for security questions to arise. Here are answers to the Kubernetes questions we hear most often.
Security -
Prevent Wasm Compiler Bugs Early | Fastly
iximeow, Chris Fallin
We recently discovered a compiler bug in part of the WebAssembly compiler that we use for Compute@Edge, that could have allowed a WebAssembly module to access memory outside of its sandboxed heap. But because of the people, processes, and tools we have in place, the bug was caught and patched on our infrastructure before it was exploited.
SecurityWebAssembly -
Memory flaw in Cranelift module
Fastly Security Research Team
The bug identified in the Cranelift x64 backend performs a sign-extend instead of a zero-extend on a value loaded from the stack, when the register allocator reloads a spilled integer value narrower than 64 bits. This interacts poorly with another optimization: the instruction selector elides a 32-to-64-bit zero-extend operator when we know that an instruction producing a 32-bit value actually zeros the upper 32 bits of its destination register. Hence, the x64 compiler relies on these zeroed bits, but the type of the value is still i32, and the spill/reload reconstitutes those bits as the sign extension of the i32’s MSB.
Security -
PayPal: secure payments at the edge | Fastly
Lindsay Morris
Online payments giant PayPal uses Fastly’s edge platform to deliver a more secure, faster, and more reliable user experience at a time when digital payments are surging.
CustomersCompute -
Saving time and reducing rework with DRY code
Deanna Barshop
Following the DRY principle isn’t just for engineers. It also cuts the time it takes to make updates in multiple places and reduces errors for our documentation team.
Engineering -
Why Fastly Changed its Control Panel Design
Jennifer Fleming
Over the past few months, we’ve rolled out a series of design improvements focused on text readability, easing eye-strain, and providing a seamless brand experience.
Product -
Creating an Efficient Language with Zig | Fastly
Hannah Aubry
Zig is a general purpose programming language, meaning that if you have in front of you something that looks like a Von Neumann-ish, Turing-complete machine, you should be able to comfortably program it with Zig. Lately there has been a lot of interest in two such (virtual) machines: BPF and WebAssembly.
EngineeringWebAssembly -
Introducing GitHub Actions for Compute
Kailan Blanks
GitHub Actions for Compute allow you to transition from a manually deployed application to a fully automated deployment workflow with ease and wrap the Fastly CLI to provide an easy way to keep your application up to date.
Compute -
New ways to compose content at the edge with Compute
Andrew Betts
It's always been possible to create content programmatically, and with the advent of our serverless compute environment, we've made it possible to create and transform content more efficiently and powerfully than ever before.
WebAssemblyCompute -
More is less: stop adding to your security tool technical debt
Brendon Macaraeg
Throwing new security tools at new threats results in scattershot protection and builds technical debt. Organizations need uniform protection for applications and APIs, regardless of where they live.
Security -
API and ATO Security Challenge Addressed | Fastly
Brendon Macaraeg
New Fastly next-gen WAF dashboards surface security telemetry from more than 20 new signals for advanced attack scenarios, such as account takeover, credit card validation, and password reset.
SecurityObservability -
Using Kinesis Data Streams
Haley Lenner
Fastly now offers logging support for Amazon Kinesis Data Streams, as well as AWS Identity and Access Management (IAM) functionality for S3 and Kinesis logging endpoints.
ProductObservability -
Compute: porting the iconic video game DOOM
Justin Liew
id Software’s DOOM has become one of the most-ported games in history. It felt like a perfect project to port to Compute, built on our serverless compute environment, to experiment with different applications of the product.
Product+ 2 more -
Fastly and Okta partner to lock down layer 7
Sean Leach
Layer 7 is a primary battleground for web application and API security. Fastly and Okta have partnered together to share threat intelligence, so security and development teams can better protect their systems.
SecurityCompany news -
Compute@Edge: Serverless Insights by Company | Fastly
Kimmie Nguyen
Vox Media, Mux, and PerimeterX share how Compute is unlocking performance, agility, and creativity across their organizations.
CustomersCompute -
Building Security Mindset in Engineering
Kevin Rollinson
Explore how leaders from both sides of the aisle have built thriving secure DevOps cultures by putting trust in people first.
SecurityDevOps -
You asked, we delivered: Terraform support for TLS is here
Joe Hoffend, Sudhir Patamsetti
Teams can now automate their Fastly TLS workflows through Terraform — including issuing certificates, retrieving TLS details, and performing other updates.
SecurityProduct
