The Digital Operational Resilience Act (DORA) is changing the cybersecurity and regulatory compliance landscape for financial institutions in the EU. In effect, DORA is now binding, with regulators shifting from guidance to active enforcement. For developers building or maintaining financial applications, understanding DORA’s requirements and how to meet them is essential.

In this post, we’ll break down what DORA is, why it's important and what it means for developers. You'll also get a glimpse on how to meet the regulatory requirements with your enterprise Java applications. 

Almost any developer looking to leverage containers turns to Kubernetes (K8s) for orchestration. However, with its complexity comes security risks, particularly misconfigurations, which remain one of the most critical attack vectors in cloud-native environments. In effect, K8s misconfigurations can lead to data breaches, privilege escalations and service disruptions. 

This blog examines key technical security challenges associated with K8s and demonstrates how to mitigate these risks through platform engineering. 

Application server migrations often come with apprehension. While companies look forward to better performance and/or support, enhanced security as well as functionalities, they can feel like navigating a project full of potential pitfalls. Among these, a particularly pressing concern is whether the application development team is prepared to handle the complexity of the migration process.

After all, a successful migration isn’t just about the technology—it’s about the people implementing it. Addressing this fear is crucial to ensuring a smooth transition and unlocking the full potential of your new platform. Let’s have a look at how organizations can address this challenge while improving their skillsets.

Platform Engineering is rapidly becoming a must-have approach for modern software teams looking to streamline operations, scale development efficiently, reduce cognitive load on developers while enhancing their productivity. But while the word is on everyone's lips, do we really know what it means? When it comes to middleware solutions, how can a platform engineering-based solution help users?

Choosing the right application server is critical for the success of enterprise-grade applications. While Red Hat’s JBoss is a commonly implemented solution, organizations may want to explore alternatives to their current applications servers and runtimes. Sure, migrations can be intimidating, but if JBoss is no longer a perfect fit for a specific application, a move can help meet specific requirements, such as cutting licensing costs or adopting cloud-native approaches, as well as unlock new opportunities or capabilities.  

If you're here, chances are you’re considering your options. In this blog, we’ll discuss what JBoss offers, why businesses look for alternatives as well as what key contenders to look for when exploring alternatives. 

In our latest release blog post, we announced the availability of a new version of Payara Platform Community 7 Alpha, which gives developers a more snapshot view of the upcoming Jakarta EE 11 features, helping them get closer to the technology. In particular, the March release of Payara Platform Community delivers game-changing concurrency improvements.

Let's dive into what this means for your applications and your projects as well as how it can enhance developer productivity. 

Much like corporate offices, applications are critical assets at the core of modern business operations. As they hold valuable information by handling and processing data that support essential workflows, they are prime targets for hackers. As such, just as physical office spaces require security systems to protect valuable information and resources, applications need robust defenses to ensure data integrity, resilience and regulatory compliance. 

A secure environment relies on two complementary strategies: tools that identify vulnerabilities and proactive defenses that prevent cyber intrusions. Together, these approaches create a secure, robust framework that safeguards both the business and its users. Let’s explore how these essential strategies work and how they can deliver a synergetic effect in the context of application security. 

Companies sometimes contemplate migrating their enterprise Java applications to a different runtime to optimize costs, benefit from greater technical support, achieve better performance, scalability or new functionalities. However, when it comes to taking active steps towards implementing an alternative application server, many decide not to proceed. A recurring concern for multiple companies is whether such migrations can be done securely, without compromising data integrity or compliance with stringent regulations.

So, are application server migrations secure? How can teams ensure the right robustness and resilience measures are in place? Let’s dig in the world of runtime cybersecurity and migration planning.

May 2025 marks a monumental milestone in software development: Java turns 30. The impact of this language on the technology landscape is undeniable, forming the backbone of today’s digital world. Its anniversary is a celebration of the code as well as the innovation, adaptability and thriving global community built around Java. The return of JavaOne, which used to be the ultimate gathering for the Java community, offers a perfect moment to reflect on the technology's legacy, its continued relevanceand its achievements.