my blog. for you.

Let’s talk digital.

I’m an independent IT consultant and entrepreneur in the Internet and software business. I’m interested in design, enterprise applications, web apps and SaaS products. I design and develop business solutions and applications. I help companies in terms of software quality and knowledge transfer, e.g. with Angular and Spring Boot.

Repost from 16 June 2020: COVID-19 Tracing App for Germany

Repost from 16 June 2020: German COVID-19 tracing app available now. Read more

German COVID-19 Tracing App Available Now

Earlier today, the highly anticipated COVID-19 tracing app for Germany, called Corona-Warn-App, has been released. The iOS version is available on the App Store. The Android version can be downloaded at Google Play. The Corona-Warn-App is based on the DP3T (Decentralized Privacy-Preserving Proximity Tracing) architecture and the joint specification by Apple and Google for privacy-preserving exposure notification, which implements this architecture as an API for official public health providers to draw upon. The app is developed and published as open source under the Apache ... Read more

Monoliths Aren’t Inherently Bad

Self-professed minimalist developer Kelsey Hightower a few months ago wrote about monoliths being the future. The microservice design pattern has been trending in software development for quite some now. Unfortunately, more often than not it's been indiscriminately treated as a panacea to every software architecture and design problem out there. Microservices can help with one aspect specifically: Reducing deployment risk. If you have a large monolith and frequently need to make changes to a specific part or feature provided by that monolith the whole ... Read more

No-code, Low-code, Some Code and Everything In-between

CTO-for-hire (through Freeman Clarke) Alex Hudson recently wrote an article about what he terms "The 'No Code' Delusion": That so-called no-code and low-code tools will replace bespoke business software development entirely, no trained software developers required anymore. In a nutshell, it's the old pipe dream of just having to write a specification (in this case a visual one) and having the actual code write itself, the fallacy here of course being that the code is the final product rather than the specification ... Read more

In-depth Description of Medical Devices Software Testing

In this blog post series medical devices software developer Julien Zaegel describes the process of testing software for medical devices, including automated tests, supervised tests and manual tests. Julien provides a detailed view on how quality assurance for software for medical devices works in order to ensure the safety and reliability required for devices of literally vital importance, as well as of course legal and regulatory compliance. He not only explains the various test processes, practices, categories of tests and different levels of ... Read more

API Security Best Practices by Expedited Security

For everyone dealing with web-based APIs, both as a provider and a consumer, web app security service supplier Expedited Security (known for Expedited SSL, among other products) has compiled a vast, extensive compendium on API security best practices. The importance of secure APIs and best practices that help has make APIs more secure and dependable can't be emphasised enough. Covering each possible attack vector and adopting every best practice out there can seem like a truly daunting task. Guides like this one help ... Read more

Konrad Zuse: Not the most correct but the least complicated theories find practical application.

Not the most correct but the least complicated theories find practical application. - Konrad Zuse A translated quote from one of the inventors of computers and modern computer science I read last year under a bust of Zuse near Kleiner Tiergarten in Berlin this statement is more relevant today than ever. In software development in particular we often attempt to design solutions that cover each and every possible use case - however unlikely or even virtually non-existent that use case might be. ... Read more

Example: Proposal for Pet Clinic Management Application

1. Goal The Pet Clinic Management application is supposed to replace manual paper-based management processes in pet clinics, particularly when it comes to appointment scheduling. 2. Product Use The application is to be used in a standard office environment with network and internet access. The application requires a modern browser (Chrome, Firefox, Safari, Edge, most current version). 3. Product Overview 4. Product Features 4.1 Actors 4.1.1 Owner 4.1.2 Receptionist 4.1.3 Vet 4.2 Business Processes 4.2.1 Register a new owner 4.2.2 Register a new pet 4.2.3 Manager owners and pets 4.2.4 Make an appointment 4.2.5 Visit pet ... Read more

JSON Web Tokens: Downsides, Best Practices and Secure and Robust Alternatives

JSON Web Tokens (JWTs) nowadays are commonly used for transmitting authentication data in web applications, especially those exhibiting the widespread client-server architecture where you have a fat client / single-page application written in JavaScript as a front-end and a back-end server providing REST endpoints for use by that front-end client. However, while common there are good arguments against this practice. In a nutshell, JWT often are used for storing session data such user authorization and authentication information although they aren't particularly well-suited to ... Read more

“Accessible HTML Content Patterns” by Eric Bailey

Accessibility, though unfortunately often still treated as an afterthought, is a key part of developing and providing software products, web applications in particular. Accessibility, mark you, isn't just an enabler for those with special needs, although that's sufficient reason for paying attention to your web apps being accessible. Accessibility also is about designing products and processes to be accessible regardless of the device they're used on, the circumstance they're used in and the people they're used by. In that vein, designer Eric Bailey ... Read more
Next Page »