Erik Costlow

Avatar photo

Erik Costlow

Erik Costlow was Oracle’s principal product manager for Java 8 and 9, focused on security and performance. His security expertise involves threat modeling, code analysis, and instrumentation of security sensors. He is working to broaden this approach to security with Contrast Security. Before becoming involved in technology, Erik was a circus performer who juggled fire on a three-wheel vertical unicycle.

Do you want your ad here?

Contact us to get your ad seen by thousands of users every day!

[email protected]
Likes 0
Comments 4
Shares 0
Articles 19
Views 126,5K

All 4 Comments

Latest post

AI-Assisted Unused & Dead Code Removal

Table of Contents Why Your Codebase Is Forcing AI to Underperform, and What to Do About ItThe Context Window Is Your AI’s Working MemoryUnused & Dead Code Is More Common Than You ThinkRuntime Evidence Changes the PictureAI-Assisted Code Removal WorkflowThe ...

Webinar: Find Undead Code in Your Java Environments

Table of Contents Put a stake through the heart of undead codeAzul Code Inventory can help remove undead codeGradle Devlocity can help automate tasks to improve productivity 10-30% of the custom code in applications is undead code and can just be …

Foojay Podcast #58: How Java Developers Can Secure Their Code

Table of Contents VideoPodcast AppsGuestsJonathan VilaBrian VermeerErik CostlowContentThree years after Log4Shell caused a significant security issue, we still struggle with insecure dependencies and injection problems. In this podcast, we’ll discuss how developers can secure their code. I talked with three …

Java: Where the Wild Code Isn’t

In the last several years, the OpenJDK community has made Java significantly safer for users and developers while at the same time making it easier to design, build, and run applications quickly.

Java users should incorporate several practices to take full benefit from the defenses of the modern JRE.

Trash Pandas Love Enterprise Java Garbage Code

If raccoons were software engineers, they would feel at home inside many enterprise systems. These systems are often full of unused and dead code.

Improve DevOps Productivity with Azul Intelligence Cloud for Any JVM

Intelligence Cloud works with any JVM from any vendor or distribution to slash time from tasks across an enterprise’s entire Java estate.

Foojay Podcast #17: Execute Java Code with TornadoVM on CPUs, GPUs, and FPGAs

TornadoVM is a programming and execution framework for offloading and running JVM applications on multi-core CPUs, GPUs, and FPGAs.

Java Security: Log4J, the SecurityManager, and Funding

A demonstration of log4j exploits, which defenses people tried, and which worked. A look at open source funding models, subscriptions, and bug bounty programs to see why it’s sometimes hard to donate.

Moving Security into the JVM

With Azul Vulnerability Detection, running the software and getting security insight become the same action.

Foojay Podcast #7: Security in Java, what do we need to know and how to keep our applications secure?

We invited Java security experts to dive into the fascinating world of secure coding and detecting vulnerabilities in your Java applications!

Join the Community

Be a Part of Our Network

Subscribe to foojay updates:

https://foojay.io/today/author/erikcostlow/feed/
Copied to the clipboard