All blog posts
Page 25
BuzzFeed Optimize Gif-heavy Content with new Fastly Feature
Fastly’s new Image Optimizer feature converts animated gifs to MP4 videos for a faster load time, smoother experience, and significant savings on end-users’ bandwidth. In fact, the new feature was able to condense BuzzFeed’s 250 MB, browser-freezing “100 Greatest Gifs of all Time” article to a much more manageable 6 MB.
Web Application Firewall (WAF) Best Practices
Following WAF best practices is imperative to keep your business and customers secure. Learn about new regulations and security tips.
The state of QUIC and HTTP/3 2020
QUIC and HTTP/3 have entered the final stages of development at the IETF. Distinguished Engineer, Jana Iyengar, elaborates on the current state of the protocols, their deployment across the internet, and his expectations for QUIC and HTTP/3 in the near future.
Deploying network error logging with Compute
We’ve been experimenting with Network Error Logging with Fastly Insights and discovered that processing the NEL reports is a great use case for Compute. In this post, we’ll look at our first attempt to build a NEL reporting pipeline, discuss where there was potential for optimization, and how Compute solves these problems while introducing performance and security improvements along the way.
Fastly to Acquire Signal Science for Security at Scale | Fastly
Security has always been a part of Fastly’s DNA, not just within products, but in our vision of trust and safety as a modern platform. Today, we are pleased to announce that we have announced our intent to acquire Signal Sciences.
Hard-earned insights from a pair of secure DevOps pros
Fastly CISO Mike Johnson and Brave Software Senior DevOps Engineer Ben Kero share their practical advice for cementing more holistic security practices within your CI/CD pipeline.
Why “by developers, for developers” matters
Developer-centricity is now a mission-critical philosophy for companies to embrace. And during COVID-19, we all know that the stakes have never been higher. We’ve seen that businesses that operate with a dev-first mindset at their core will have the strategic advantage and will only increase it, today and into the future.
Cloud Security for Developers
If you’re evaluating web application security tools exclusively for their security requirements, you may be missing one of the most essential opportunities to successfully grow your secure DevOps culture: developer-centricity.
Fastly’s security DNA: a look at our culture of safety, privacy, and trust
Fastly's heritage of security runs deep — far beyond our portfolio of web application and API security products. Our philosophy of developer empowerment, focus on community, and values-driven culture each contribute to our security DNA in an important way. And we'd like to tell you how.
Apps That Shouldn’t Be Built at the Edge | Fastly
Progressive developers are increasingly using the edge of the network to power more performant and customized apps. With the use cases mounting, it seems there's very little that can't be built at the edge. And aside from a few exceptions, that just might be true.
First things first: six resources for building on Fastly
If you’re among our newest community members, we’d love to show you more of what Fastly has to offer. Once you’ve covered the basics of our getting started guide, check out the resources in this article to take our programmable edge cloud platform further.
State at the edge
With the introduction of Compute, Fastly provides a richer model for the CPU. WebAssembly, powered and secured by the Lucet compiler and runtime, unlocks essentially arbitrary code execution within each request lifecycle. This raises the immediate question: what would a richer model for memory, or state, look like?
The Future of Zero Trust: Continuous Authentication
Being able to continuously authenticate users’ access to critical web and API services without causing them to pay the price of increased friction may sound like a lofty goal. Still, it can be achieved by integrating technologies you likely already have. Combining technologies built to continuously monitor applications and APIs for attacks and anomalous behavior with identity technologies already deployed to authenticate users allows administrators to protect their critical applications without inconveniencing the user.
What is Cache Control?
The Cache-Control response header is one of HTTP’s more widely known header fields; it allows a site to control how caches handle their data in CDNs, browsers, and elsewhere
Leveling up observability with Compute
Observability is hard. Distributed systems, dev and testing environments, and outside vendors all complicate the problem. With Compute, Fastly wants to make observability easier. Here’s what we’re doing.
Why Compute does not yet support JavaScript
Building our own compiler toolchain allows Compute to be both performant and secure. It also means we have to bring developers’ most-loved language into the fold in the right way.
TLS 1.3 is faster, more robust, and now available
TLS 1.3 is now available for Fastly customers. The newest version of the TLS protocol, TLS 1.3 is designed to improve the performance and security of traffic served over HTTPS.
Improving HTTP with structured header fields
The HTTP community has been busy modernizing the web’s protocol over the last decade, with multiple revisions of the core specification, a number of extensions, HTTP/2, and now HTTP/3. Unfortunately, the way we define and use HTTP header fields hasn’t changed much since the beginning, with underspecified headers (and lots of different ways to handle them) causing interoperability issues, developer pain, and even security problems. But help is coming.
User error logs collected | Fastly
Network error logging reports client-side failures and successes, enabling developers to understand how their sites function in the real world and how they might improve performance. In this post, we’ll explore the NEL framework, how it provides visibility, and ways to collect and process the resulting data.
Reflecting on our inclusion and diversity journey
There’s been an outpouring of corporate statements supporting Black Lives Matter over the past few weeks— but statements of solidarity don’t matter unless they are backed by action designed to create real change. We’re taking a look back at our diversity and inclusion journey, and the ongoing work we need to do as a company to manifest our aspirations.
