StackPath Announcements and Resources for Developers.
Get a visual aid, explanation and working example for terms related to security, speed and scale.
A brute force attack is a method used to obtain encrypted passwords with an automated system.
DDoS is a method of attacking a server or network by sending more requests to it than it can respond to.
An HTTP Archive (HAR) file is a common format for recording HTTP tracing information.
Load balancing uses software to distribute traffic across multiple computing resources.
HTTP/2 is the newest major version of the HyperText Transfer Protocol (HTTP).
Micro-caching is the processes of temporarily storing web content for very brief periods of time.
Cache poisoning is the replacement of legitimately cached web content with spoofed, malicious, or fake data.
Content caching is the temporary storage of files on servers that are physically closer to end users.
A content delivery network (CDN) is a collection of global servers that caches and delivers web content.
Lazy loading is a technique for loading web content when it’s needed rather than all at once.
Critical rendering path refers to a series of events a browser goes through to display the initial view of a web page.
Cross-origin resource sharing (CORS) is a standard for accessing web resources on different domains.
CWND and RWND are TCP state variables used to regulate data flow in TCP connections.
Defense in depth is the principle of having multiple layers of security to ensure the protection of a system.
Dynamic analysis is a debugging method that evaluates a program during execution.
Gzip is a bandwidth optimization tool that compresses data before delivering it over the web.
Anycast is a routing methodology that sends packets to one node out of a group of potential nodes.
Binary hardening protects against common binary attacks, carried out via the insertion of a binary file.
Cache hit ratio is the number of requests delivered by the cache server, divided by the total number of requests.
CSRF is an attack that causes a browser to execute an action on a site for which the user is currently authenticated.
Cross-Site Scripting (XSS) is a web application vulnerability that lets attackers insert client-side scripts on web pages.
The Domain Name System (DNS) associates a computer-readable IP address to a human-friendly domain name.
Domain sharding is a technique for splitting resources across multiple domains to improve page load time.
Dynamic content is content that changes based on user access time, user preferences, and personal information.
HTTP Strict Transport Security (HSTS) forces users to communicate with servers through HTTPS only.
IPFS is a hypermedia protocol addressed by content and identities instead of traditional location addressing.
Keep-Alive is a header that maintains a persistent connection between a client and server.
Minification is a bandwidth optimization technique that reduces the size of code transmitted over the web.