Security blog
Don’t DIY a secure platform: lessons learned from side-channel attacks
The largest category of difficult-to-anticipate security design weaknesses come from side-channel attacks. In this post, we take a tour of some of the more foundational and out-there side…
Today Signal Sciences and Fastly join forces. And our customers are our first priority.
Today, Fastly completed the acquisition of Signal Sciences and took a giant step forward toward our vision of modern, unified web application and API security. We will call on our shared…
Best practices for the most popular DevOps tool: WAFs
Web application firewalls are a key part of any DevOps software development cycle, allowing developers to make explicit assumptions about deployment, delivering intelligence on attacks, and…
Security at Scale: Fastly announces intent to acquire Signal Sciences, the web application and API protection solution
Security has always been a part of Fastly’s DNA, not just within products, but in our vision of trust and safety as a modern platform. Today, we are pleased to announce that we have…
Hard-earned insights from a pair of secure DevOps pros
Fastly CISO Mike Johnson and Brave Software Senior DevOps Engineer Ben Kero share their practical advice for cementing more holistic security practices within your CI/CD pipeline.
Why bigger isn’t always better when it comes to TLS key size
When it comes to the size of the encryption keys used in server certificates, bigger isn’t necessarily better. In this post, we explore why this is the case by examining the function of the…
4 characteristics of developer-friendly cloud security controls
If you’re evaluating web application security tools exclusively for their security requirements, you may be missing one of the most essential opportunities to successfully grow your secure…
Fastly’s security DNA: a look at our culture of safety, privacy, and trust
Fastly's heritage of security runs deep — far beyond our portfolio of web application and API security products. Our philosophy of developer empowerment, focus on community, and values…
TLS 1.3 is faster, more robust, and now available
TLS 1.3 is now available for Fastly customers. The newest version of the TLS protocol, TLS 1.3 is designed to improve the performance and security of traffic served over HTTPS.
Performance matters: why Compute@Edge does not yet support JavaScript
Building our own compiler toolchain allows Compute@Edge to be both performant and secure. It also means we have to bring developers’ most-loved language into the fold in the right way.
Meet Fastly’s new security dashboard integrations for WAF and real-time logging
Using integrations with BigQuery and Looker, we’ve created 15 chart templates that help you effectively monitor security events on your sites and applications, in real time.
Three ways TLS 1.3 protects origin names
The newest version of Transport Layer Security, TLS 1.3, is faster, more robust, and more responsive than ever before. Explore three ways it will help HTTPS protect origin names for improved…