Jason Nichols

Jason Nichols

Stay up to date on Application Security

Posts by Jason Nichols
  • Running SourceClear in a Docker…
    Secure Development
    | By Jason Nichols
    Running SourceClear in a Docker…

    A lot of customers ask about running SourceClear from within a Docker container on their build node. Here is how to do it. Customize this to suit your exact needs. Throughout the blog I assume that you've got a project named myproject. The steps to follow are: Build an Ubuntu based Docker image…

    Read Article
     
  • Distribute Your Java App Via Brew
    Secure Development
    | By Jason Nichols
    Distribute Your Java App Via Brew

    For developers of desktop based applications, making sure your users can easily update to the latest version can be a pain. Expecting them to fetch out updates by going to your website only adds layers of complexity and slows adoption due to inertia. For SRC:CLR and our customers, we felt this pain…

    Read Article
     
  • Dynamic message passing with Java
    Secure Development
    | By Jason Nichols
    Dynamic message passing with Java

    Imagine this scenario, you've stepped outside of Spring MVC and are reading messages from a different source (either a websocket, MQ, or vanilla TCP socket). No longer can you rely on Spring to automatically route incoming messages to the correct handler method. This is what less battle tested…

    Read Article
     
  • Crypto Bliss with AWS KMS
    Research
    | By Jason Nichols
    Crypto Bliss with AWS KMS

    So you've got a last minute requirement to secure your customer data by encrypting it at the database level? Don't panic. Take a deep breath, keep calm, and read on... Previously, I discussed some of the higher level concerns and pitfalls with attempting to roll your own key management. In today's…

    Read Article
     

Browse By Topic

Select a Topic
Customer News
Intro to AppSec
Managing AppSec
Research
Secure Development
Security News