Blog - Technology Performance Pulse

What is web application security? Everything you need to know.

Dynatrace

JUNE 9, 2021

If you ask most people how to secure a web application, you will immediately hear: “Use a web application firewall.” In this blog, I’ll first cover the basics, explaining what web application security is and why it’s important. What is web application security?

Open Source

Open Source Entertainment Tuning Internet

Web Application Security: Threats, Consequences, Preventions, And More

Simform

APRIL 13, 2022

Web application security has become one of the top concerns for business owners with threat actors evolving their ways each passing day. This article will take you through all the nuances of web app security including consequences, types, and preventions.

Technology

Technology Technology Development

Unlocking Advanced AWS Cost Optimization With Trusted Advisor

DZone

JANUARY 24, 2024

Amazon Web Services ( AWS ) offers a range of tools to help users manage their resources effectively, ensuring they are secure, well-performing, and cost-optimized. This blog will explore some of these advanced tactics to help you maximize your AWS investment.

AWS

AWS Strategy Performance

AWS re:Invent 2023 guide: Generative AI takes a front seat

Dynatrace

NOVEMBER 20, 2023

In this AWS re:Invent 2023 guide, we explore the role of generative AI in the issues organizations face as they move to the cloud: IT automation, cloud migration and digital transformation, application security, and more. But, as resources move off premises, IT teams can lose visibility into system performance and security issues.

AWS

AWS Artificial Intelligence Analytics Cloud

Best Practices To Secure Stateless REST Applications

DZone

FEBRUARY 26, 2024

Statelessness in RESTful applications poses challenges and opportunities, influencing how we manage fundamental security aspects such as authentication and authorization. This blog aims to delve into this topic, explore its impact, and offer insights into the best practices for handling stateless REST applications.

Best Practices

Best Practices Architecture Servers Processing

Managing risk for financial services: The secret to visibility and control during times of volatility

Dynatrace

APRIL 8, 2024

This blog explores how vertically integrated risk management solutions that use AI and automation enable unparalleled visibility, control, and efficiency for risk management in banking. The IT infrastructure, services, and applications that enable processes for risk management must perform optimally.

Analytics

Analytics Infrastructure Efficiency Technology

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Dynatrace

DECEMBER 12, 2021

This means that an attacker with control over a string that gets passed to the log4j 2 logger can trick the application into requesting a resource from a server under the attacker’s control, then load it, and then execute it. Application List – Which applications use these libraries? Application List.

Java

Java Internet Internet Database

Automate your work with unified observability and custom solutions

Dynatrace

APRIL 19, 2024

In this blog post, we explore real-life scenarios shared by our customers, partners, and internal users at Dynatrace, offering inspiration to kickstart your own journey with custom solutions powered by AppEngine. At Dynatrace, thousands of security tickets must be generated from these events, followed by manual remediation.

AWS

AWS Analytics Cloud Monitoring

Get the insights you need for your F5 BIG-IP LTM

Dynatrace

JUNE 5, 2023

The F5 BIG-IP Local Traffic Manager (LTM) is an application delivery controller (ADC) that ensures the availability, security, and optimal performance of network traffic flows. It serves as a crucial component between applications and users. Business-critical applications typically rely on F5 for availability and success.

Traffic

Traffic Virtualization Metrics Monitoring

JMeter: Setup for Load Testing With Certificate-based Authentication

DZone

AUGUST 4, 2021

JMeter is a widely accepted tool for doing load testing for API or Web applications. These NFRs are often considered as a parameter to measure customer experience with the developed API or Web Application. Like maintaining a threshold limit for response time. Let's get into the details. Steps to Setup JMeter.

Testing

Testing Performance Testing Performance Development

Dynatrace Runtime Vulnerability Analysis now covers the entire application stack

Dynatrace

AUGUST 11, 2022

In addition to modern application stacks introducing new levels of speed and complexity, they also create new security challenges. And the distinction between applications and cloud platforms is blurring. AI-powered risk assessment based on observability data provided by the Davis® Security Advisor.

Java

Java Cloud Virtualization DevOps

What is RASP? Why runtime application self-protection is important, and how to do it right

Dynatrace

JUNE 16, 2022

Runtime application self-protection (RASP) is one of the newer approaches to protecting web applications. Currently, RASP is undergoing a significant evolution with the rise in web attacks and new application deployment models. Securing cloud applications requires a layered approach. Dynatrace news.

Tuning

Tuning Cloud Open Source Network

RSA Guide 2023: Cloud application security remains core challenge for organizations

Dynatrace

APRIL 11, 2023

Today’s organizations face increasing pressure to keep their cloud-based applications performing and secure. Cloud application security remains challenging because organizations lack end-to-end visibility into cloud architecture. For many IT teams, application vulnerabilities remain a key challenge.

Cloud

Cloud DevOps Open Source Retail

Log4Shell vulnerability: Identifying and minimizing production risk

Dynatrace

DECEMBER 12, 2021

This means that an attacker with control over a string that gets passed to the log4j 2 logger can trick the application into requesting a resource from a server under the attacker’s control, then load it, and then execute it. Application List – Which applications use these libraries? Application List.

Java

Java Internet Internet Database

Dynatrace Application Security detects and blocks attacks automatically in real-time

Dynatrace

FEBRUARY 10, 2022

One key element for securing applications in modern environments is vulnerability management. Static Application Security Testing (SAST) solutions are a traditional way of addressing this. In the worst case, you have to inform customers and the public about security breaches and stolen data.

Traffic

Traffic Benchmarking Innovation Java

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Dynatrace

APRIL 14, 2022

Because 60% of developers use Spring for their Java applications , many applications are potentially affected. Spring is a widely used open source Java-based framework for building web applications with the Java Enterprise Edition platform. Further, the report lists Tomcat as the most popular Java application server.

Java

Java Servers Code Open Source

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

Dynatrace

DECEMBER 16, 2021

Since December 10, days after a critical vulnerability known as Log4Shell was discovered in servers supporting the game Minecraft, millions of exploit attempts have been made of the Log4j 2 Java library, according to one team tracking the impact, with potential threat to millions more applications and devices across the globe.

Internet

Internet Internet Games Java

Enhance data management with Grail: Ultimate guide to custom buckets and security policies

Dynatrace

OCTOBER 6, 2023

Grail: Enterprise-ready data lakehouse Grail, the Dynatrace causational data lakehouse, was explicitly designed for observability and security data, with artificial intelligence integrated into its foundation. Buckets for data with high-security requirements Buckets can also be used for managing high-level access control of data.

Artificial Intelligence

Artificial Intelligence Analytics Metrics Storage

Why vulnerability management enhances your cloud application security strategy

Dynatrace

JANUARY 21, 2022

Key takeaways from this article on vulnerability management for cloud application security: Today’s cloud apps with their fast innovation cycles and frequent use of open-source libraries must address a gap for runtime vulnerability management in production environments. Dynatrace news.

Strategy

Strategy Cloud Open Source DevOps

Dynatrace introduces automatic vulnerability management for PHP

Dynatrace

DECEMBER 9, 2021

PHP is widely used in web development by prominent social media companies, content management systems, and video teleconferencing brands. Due to the widespread adoption and rich ecosystem of available PHP libraries, all types of security vulnerabilities can be found in PHP applications.

Social Media

Social Media Open Source Media Cloud

Implementing AWS well-architected pillars with automated workflows

Dynatrace

SEPTEMBER 13, 2023

If you use AWS cloud services to build and run your applications, you may be familiar with the AWS Well-Architected framework. This is a set of best practices and guidelines that help you design and operate reliable, secure, efficient, cost-effective, and sustainable systems in the cloud.

AWS

AWS Efficiency Azure Cloud

Dynatrace Application Security boosts BizDevSecOps for Kubernetes

Dynatrace

FEBRUARY 10, 2021

After announcing our new Application Security Module in December, the fast adoption and great feedback we heard from customers confirmed the urgent need for a more automated approach to continuous runtime application security with full insights into production and pre-production environments.

Java

Java Open Source Engineering Database

Automatically detect potential frontend attacks that cause Content Security Policy (CSP) violations

Dynatrace

JUNE 7, 2021

Content Security Policy (CSP) is a browser feature that adds an extra layer of security against such threats to your web applications. automatically detect security threats and. Davis automatically detects security threats for all web apps. continuously improve your CSP policies.

Website

Website Metrics Mobile Engineering

Tailored access management for Dynatrace: Part 1 – One configuration for all authorization requirements

Dynatrace

OCTOBER 26, 2022

Security policies ease permissions administration. Some time ago, we introduced security policies for our configuration framework (aka Settings 2.0) Over the course of the last year, we’ve incrementally extended the coverage of security policies to provide a common authorization mechanism for the entire Dynatrace platform.

Cloud

Cloud Scalability Architecture Systems

Dynatrace SaaS on Google now generally available

Dynatrace

APRIL 20, 2022

From application and infrastructure monitoring to digital experience and application security, Google Cloud customers will get the full benefits of the Dynatrace platform. Fast and easy deployment of Dynatrace OneAgent to Google Cloud hosts, containers, PaaS, and web applications.

Google

Google Availability Cloud Infrastructure

What is Spring4Shell? Detect and mitigate new zero-day vulnerabilities in the Java Spring Framework

Dynatrace

MARCH 31, 2022

Many applications are potentially affected, as Spring dominates the Java ecosystem , with 60% of developers using it in their main Java applications. There are several methods and tooling available to identify if an application is affected. We explore two options below: Using Dynatrace Application Security.

Java

Java Cloud Availability Code

Software intelligence as code enables tailored observability, AIOps, and application security at scale

Dynatrace

FEBRUARY 9, 2022

One of the primary drivers behind digital transformation initiatives is the desire to streamline application development and delivery to bring higher quality, more secure software to market faster. or “Did the last update cause the application issue or was it something else?” Dynatrace news.

Code

Code Software Software DevOps

Dynatrace and Microsoft Azure integrate to help accelerate your cloud transformation

Dynatrace

SEPTEMBER 8, 2022

Using Dynatrace on Microsoft Azure allows customers to leverage all the benefits of the Dynatrace platform’s underlying cloud-native, web-scale architecture while operating entirely in the Azure cloud. This improves security and compliance and creates a single source for troubleshooting, performance optimization, and cross-team collaboration.

Azure

Azure Cloud Virtualization Metrics

5 years of external pentesting: How the Dynatrace security posture has strengthened

Dynatrace

FEBRUARY 17, 2021

Over each of the past five years, the Dynatrace security team has tasked external security firms with conducting penetration tests of our SaaS and Managed components. These tests are performed to verify the effectiveness of our security controls. We’ve raised the bar for security at Dynatrace. Fast forward to 2020.

Testing

Testing Mobile Code Monitoring

Tech Transforms podcast: Company Culture, Hyperautomation, User Experience in a Zero Trust World, and Security Metrics – June 2022 recap?

Dynatrace

JULY 14, 2022

In June 2022, the Tech Transforms podcast delves into building trust through diversity, equity, and inclusion, and hyperautomation as a tool for unlocking fast and accurate application security. Listen in as Carolyn learns what can be gained through fast, accurate application security. appeared first on Dynatrace blog.

Metrics

Metrics Social Media Government Media

Dynatrace SaaS release notes version 1.234

Dynatrace

FEBRUARY 7, 2022

Application Security. Fixed a bug that resulted in missing information in the Dynatrace web UI Problems and problem notifications. (APM-348206). Application Security. The post Dynatrace SaaS release notes version 1.234 appeared first on Dynatrace blog. General Availability (Build 1.234.107). APM-345471).

Infrastructure

Infrastructure Metrics Database Availability

Davis Security Advisor extends Dynatrace Application Security with automatic vulnerability prioritization

Dynatrace

JUNE 17, 2021

In recent years, the volume of reported security vulnerabilities in enterprise software has increased exponentially. While DevSecOps teams focus on detecting and remediating security vulnerabilities as early in the release pipeline as possible, developers are trying to keep pace with the high number of security alerts.

Open Source

Open Source Internet Internet Cloud

Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability

Dynatrace

DECEMBER 23, 2021

Since the Log4j vulnerability CVE-2021-44228 —or Log4Shell—emerged in early December, security teams have faced great pressure to identify and remediate it. Log4Shell is a software vulnerability in Apache Log4j 2 , a popular Java library for logging error messages in applications.

Internet

Internet Internet Energy Open Source

How runtime security helps DevSecOps teams eliminate security blind spots

Dynatrace

MARCH 28, 2022

Security blind spots pose a significant threat to an effective DevSecOps strategy and leave organizations vulnerable to attack—in some cases when applications are already live. Three key runtime security questions for DevSecOps. To be effective, Berger argues, modern application security requires speed and precision.

Strategy

Strategy Cloud Speed Network

Support of OpenTelemetry metrics with enhanced AI capabilities

Dynatrace

MAY 18, 2022

Developers are likely to adopt the new OpenTelemetry spec faster because it’s helpful to capture metrics that are exposed over the OpenTelemetry protocol or Prometheus, and it’s easy to instrument any web services and client applications you’ve built to migrate away from OpenCensus , much like how it was done with OpenTracing a year ago.

Metrics

Metrics DevOps Tuning Virtualization

Dynatrace named a launch partner of Amazon EKS Blueprints

Dynatrace

APRIL 20, 2022

We’re excited to announce that Dynatrace has been recognized as a launch partner for the newly introduced Amazon Web Services (AWS) offering of Amazon EKS Blueprints. Amazon Elastic Kubernetes Service is a managed infrastructure service offered by Amazon Web Services that executes and scales Kubernetes applications in the AWS cloud.

AWS

AWS Infrastructure Open Source Best Practices

Protect your organization against zero-day vulnerabilities

Dynatrace

AUGUST 3, 2022

In today’s complex, data-driven world, many security vulnerabilities and attacks can jeopardize an organization’s data. Because they’re previously unknown to experts, it’s nearly impossible for security professionals to anticipate them, which puts organizations worldwide at great risk. Dynatrace news. What is a zero-day vulnerability?

Java

Java Traffic Benchmarking Strategy

The right person at the right time makes all the difference: Best practices for ownership information

Dynatrace

MARCH 27, 2024

What to consider when adding ownership information Introducing ownership information requires several simple steps and typically depends on the desired application. Sample workflow to automate Kubernetes workload optimization Security Vulnerability Processing Figure 8. Contact us to schedule a demo.

Best Practices

Best Practices Azure Database Code

Dynatrace SaaS release notes version 1.233

Dynatrace

JANUARY 20, 2022

For applications with the RUM JavaScript version 1.193+, you can switch to masking v2 in the Session Replay settings. For applications with the RUM JavaScript version 1.192 or earlier, you must update the RUM JavaScript to at least version 1.193 and then switch to masking v2. Japanese display language (Dynatrace web UI).

Lambda

Lambda AWS Metrics Azure

Dynatrace SaaS release notes version 1.232

Dynatrace

JANUARY 11, 2022

Application Security. Dynatrace security notification integration with Jira is now available. On the Application Security overview page you can now: Find information about your host coverage. Calculated application, log, and service metrics now consume Davis data units (Metrics pool). User interface.

Metrics

Metrics Monitoring Availability Mobile

AWS serverless services: Exploring your options

Dynatrace

OCTOBER 7, 2021

For many companies, the journey to modern cloud applications starts with serverless. Amazon Web Services (AWS), offers a wide range of serverless solutions. Serverless architecture shifts application hosting functions away from local servers onto those managed by providers. Dynatrace news. Let’s get started. Reliability.

Serverless

Serverless AWS Lambda Storage

AWS re:Invent 2021 shines light on cloud-native observability

Dynatrace

NOVEMBER 11, 2021

As a result, reliance on cloud computing for infrastructure and application development has increased during the pandemic era. According to Forrester Research, the COVID-19 pandemic fueled investment in “hyperscaler public clouds”—Amazon Web Services (AWS), Google Cloud Platform and Microsoft Azure.

AWS

AWS Cloud Lambda Azure

Hybrid cloud infrastructure explained: Weighing the pros, cons, and complexities

Dynatrace

JUNE 29, 2022

Hybrid cloud architecture is a computing environment that shares data and applications on a combination of public clouds and on-premises private clouds. For example, workflows from both public and private cloud resources can support an application. What is hybrid cloud architecture? Five hybrid cloud platforms to consider.

Infrastructure

Infrastructure Cloud Azure AWS

Vulnerability assessment: key to protecting applications and infrastructure

Dynatrace

OCTOBER 13, 2021

Protecting IT infrastructure, applications, and data requires that you understand security weaknesses attackers can exploit. Examples of such weaknesses are errors in application code, misconfigured network devices, and overly permissive access controls in a database. Vulnerability assessment is an established area of security.

Infrastructure

Infrastructure Open Source Virtualization Operating System

What is web application security? Everything you need to know.

Web Application Security: Threats, Consequences, Preventions, And More

Trending Sources

Unlocking Advanced AWS Cost Optimization With Trusted Advisor

AWS re:Invent 2023 guide: Generative AI takes a front seat

Best Practices To Secure Stateless REST Applications

Managing risk for financial services: The secret to visibility and control during times of volatility

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Automate your work with unified observability and custom solutions

Get the insights you need for your F5 BIG-IP LTM

JMeter: Setup for Load Testing With Certificate-based Authentication

Dynatrace Runtime Vulnerability Analysis now covers the entire application stack

What is RASP? Why runtime application self-protection is important, and how to do it right

RSA Guide 2023: Cloud application security remains core challenge for organizations

Log4Shell vulnerability: Identifying and minimizing production risk

Dynatrace Application Security detects and blocks attacks automatically in real-time

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

Enhance data management with Grail: Ultimate guide to custom buckets and security policies

Why vulnerability management enhances your cloud application security strategy

Dynatrace introduces automatic vulnerability management for PHP

Implementing AWS well-architected pillars with automated workflows

Dynatrace Application Security boosts BizDevSecOps for Kubernetes

Automatically detect potential frontend attacks that cause Content Security Policy (CSP) violations

Tailored access management for Dynatrace: Part 1 – One configuration for all authorization requirements

Dynatrace SaaS on Google now generally available

What is Spring4Shell? Detect and mitigate new zero-day vulnerabilities in the Java Spring Framework

Software intelligence as code enables tailored observability, AIOps, and application security at scale

Dynatrace and Microsoft Azure integrate to help accelerate your cloud transformation

5 years of external pentesting: How the Dynatrace security posture has strengthened

Tech Transforms podcast: Company Culture, Hyperautomation, User Experience in a Zero Trust World, and Security Metrics – June 2022 recap?

Dynatrace SaaS release notes version 1.234

Davis Security Advisor extends Dynatrace Application Security with automatic vulnerability prioritization

Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability

How runtime security helps DevSecOps teams eliminate security blind spots

Support of OpenTelemetry metrics with enhanced AI capabilities

Dynatrace named a launch partner of Amazon EKS Blueprints

Protect your organization against zero-day vulnerabilities

The right person at the right time makes all the difference: Best practices for ownership information

Dynatrace SaaS release notes version 1.233

Dynatrace SaaS release notes version 1.232

AWS serverless services: Exploring your options

AWS re:Invent 2021 shines light on cloud-native observability

Hybrid cloud infrastructure explained: Weighing the pros, cons, and complexities

Vulnerability assessment: key to protecting applications and infrastructure

Stay Connected