Mourjo Sen, Senior Software Engineer, Booking.com
Room: Grote zaal – 2nd floor
Time: 11:15 – 11:45
Unchecked traffic congestion can render our microservices unresponsive, driving away customers – we do not want our users to ever see an HTTP 503. So, how do we (a) detect congestion before it breaks end-user experience and (b) recover from congestion? To make congestion detection and mitigation resilient and scalable, we must also be able to do it with local measurements inside our application.
Microservices are sandwiched between two pieces of the congestion problem: (a) users may start making too many requests and (b) services we depend on may become slow. Either of these scenarios can cause a traffic congestion. We want to detect this and gracefully degrade our quality of service to allow users to know what is going on, instead of an unexplained HTTP 503 status.
In this talk, I will explain how we can build resilient micro services with built-in congestion control mechanisms. I will use a sample Java Spring Boot application to demonstrate the effect of congestion building up and illustrate how we can detect and react to it. All of this will be done with simple local measurements to ensure stability and resilience.
Marco Pierobon, Principal Developer, Thoughtworks
Room: Grote zaal – 2nd floor
Time: 13:15 – 13:45
Prerit Munjal, CTO, InfraOne
Room: IJ zaal – 5th floor
Time: 13:15 – 13:45
Sohan Maheshwar, Lead Developer Advocate, AuthZed
Room: Grote zaal – 2nd floor
Time: 13:50 – 14:20
Arjen Wiersma, Cyber Security Consultant, Scyon
Room: IJ zaal – 5th floor
Time: 13:50 – 14:20
AI is revolutionizing software development, promising unprecedented speed. But blindly accepting AI-generated code – a practice coined “vibe coding” – can swiftly lead to security nightmares, as illustrated by real-world examples of exposed keys, bypassed payments, and chaotic architectures.
This talk dissects the inherent risks when developers, especially those new to coding, leverage AI without oversight. I contrast risky “AI-driven” development with secure “AI-enhanced” development practiced by experienced engineers. Drawing on over 30 years in software and cybersecurity, I present seven essential rules for building secure applications in the age of AI.
Learn how to evaluate generated code, apply established standards, perform effective testing, manage complexity, ensure documentation, and stay ahead of emerging AI security threats like prompt injection. Equip yourself to harness AI’s power safely and build robust systems, avoiding the pitfalls of the security nightmare.
Marc Klefter, Senior Solutions Architect, AxonIQ
Room: Grote zaal – 2nd floor
Time: 14:50 – 15:20
Kaustubh Hiware, Senior Software Engineer, Mercari
Room: IJ zaal – 5th floor
Time: 14:50 – 15:20