Photo by Brett Jordan on Unsplash

Building trustworthy software requires a holistic approach to product resiliency, culture of security awareness.

Elements to compose trustworthy software —

  1. Product Security Requirements
  2. Secure Design
  3. Secure Coding
  4. Secure Testing
  5. Continuous Monitoring & Update

Photo by Annie Spratt on Unsplash

In simple words, DevSecOps is a process of baking security into the engineering process early on. You integrate and automates security processes and tooling into all the development workflow so that it’s seamless and continuous.

DevSecOps = Development + Security + Operations

DevSecOps is a paradigm shift in thinking and culture that team members & organizations need to embrace.

Traditionally major software developers used to release new versions of their applications every few months or even years. …

Photo by Ali Hajian on Unsplash

Anomaly detection is the identification of rare items, events, or observations that raise suspicions by differing significantly from the majority of the data. Typically the anomalous items will translate to some kind of problem such as credit card fraud, network intrusion, medical diagnostic, system health monitor.

Anomaly detection works on two basic premise

  • Anomalies only occur very rarely in the data.
  • Their features differ from normal instances significantly.

Anomaly Detection Techniques

Interquartile Range (IQR)

The simplest approach to identifying irregularities in data is to flag the data points that deviate from common statistical properties of distribution, including mean, median, mode, and quartiles.

One of the most…

Photo by bill Wegener on Unsplash

A friend of mine narrated a beautiful and touching story of an African tribe. The story goes like this. An anthropologist finished his work, had to wait for the bus that would take him to the airport. While waiting for the bus he was surrounded by kids. He proposed a game for children who surrounded him. He put a basket full of fruits & candies, placed it under a tree, drew a line on the ground, and explained that they should wait behind the line for his signal. When he said “on your mark, get set, go” the kids should…

Photo by Nicholas Green on Unsplash

Imagine you want to buy a new mobile phone. You are unlikely to walk into a store and just buy a phone. You browse the product on the internet, read reviews, compare models, prices. You seek opinions from your family and friends. In short, you heavily research, seek the wisdom of the crowd before making an informed decision. It is common wisdom that gathering a variety of views and inputs improves the process of decision making.

What is Ensemble learning?

Photo by Tim Mossholder on Unsplash

I’m fascinated by listening to the musician on the stage. I had an opportunity to observe a musician perform recently. Before getting to the stage, she expressed nervousness about her performance. When her name was announced, she went to stage. One deep breath and mic in stage, the next 30 minutes she enthralled the audience with a great performance. I asked her after the performance, how did she manage it. She attributed her brilliant performance to “being in a state of flow”.

We hear athletics, musicians attribute their performance to years of intense practice which results in “being in a…

Photo by Helloquence on Unsplash

Almost every project manager has experienced missing project deadlines. One of the common reasons for missing the project deadlines is the estimation of cost or task duration. Most managers view estimates (cost or task duration) as deterministic thereby fail to recognize that that the estimates are probabilistic. They use single-point estimates and have a false notion that the future can be predicted accurately. A better way to predict project outcomes is to use Monte Carlo Simulation to conduct a quantitative analysis of project risks.

What is Monte Carlo Simulation?

Photo by Daniel Páscoa on Unsplash

I recently had lunch conversation with my friend on being cloud native applications. We discussed noise around too many companies shouting “we do cloud’ where they run IT in their own data center. That’s not cloud, that’s a managed service product offering, jumping on the bandwagon. What they neglect is the aspect of building and running application — deployment, automation, orchestration and operating. Simply put Cloud native is an approach to build and run applications that exploit the advantages of this new model. This model includes on-demand delivery, global deployment, scalable and higher-level abstraction services. …

Photo by Max Bender on Unsplash

Imagine a day as an engineer where you can focus on application and not infrastructure. Sound too good to be true? A lot of productive efforts could be channeled in the right direction. This is the way it should have been. Good news is that this is a reality through Serverless Computing.

Serverless Computing is an execution model that lets engineer stay focus on application goals, outsourcing the burden of infrastructure to Cloud Vendor (Amazon, Microsoft, Google). A user writes a server-side function which is run inside stateless containers hosted by Cloud vendor. Functions are triggered by a variety of…

My 7-year-old kid’s first interaction with computers was through voice. He asked Apple Siri to answer trivia like “Which is fastest car?”. When we bought Amazon Echo, my father commanded Alexa to sing old songs. Voice based Interactions are becoming ubiquitous in our daily lives. We can find them in smartphones like Apple Siri, voice assistants like Amazon Alexa, Google Home, and range of other products. It is clear voice-based interaction will soon replace graphical user interface. According to industry experts 30 % of interaction with devices will happen over voice in the next 2–3 years.

Users have long interacted…

Krishnan Srinath

Data Generalist. Using data to make machines humane.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store