Field notes from the edge.
What our engineers learned this week. Hands-on technical deep-dives, postmortems, and strategy frameworks.
AIEnforcing trust and transparency: Open-sourcing the Azure Integrated HSM
Microsoft is open-sourcing its Azure Integrated HSM, a FIPS 140-3 Level 3 certified hardware security module built into every new Azure server, to enhance transparency and trust in cloud cryptographic operations. The firmware, driver, and software stack will be released through the Open Compute Project, enabling independent validation by customers, partners, and regulators. This server-local appro
AIAzure IaaS: Defense in depth built on secure-by-design principles
Microsoft Azure IaaS implements a comprehensive security architecture combining defense-in-depth layering with Secure Future Initiative (SFI) principles across compute, networking, and storage infrastructure. Security is engineered from hardware roots of trust through virtualization boundaries, with protections enabled by default including network isolation, encryption, and DDoS mitigation. The pl
AIModernize your workflows: Amazon WorkSpaces now gives AI agents their own desktop (preview)
Amazon WorkSpaces now enables AI agents to securely operate desktop and legacy applications through managed virtual desktops in public preview, eliminating the need for API development or application modernization. The service supports industry-standard Model Context Protocol (MCP) and integrates with popular agent frameworks like LangChain and CrewAI, while maintaining enterprise security control
AIThe AWS MCP Server is now generally available
AWS has launched the AWS MCP Server, a managed Model Context Protocol server that provides AI agents and coding assistants with secure, authenticated access to AWS services through IAM credentials. The service addresses common issues with AI agents working on AWS, including outdated training data and overly permissive IAM policies, by offering real-time documentation access and a compact set of to
AICode Orange: Fail Small is complete. The result is a stronger Cloudflare network
Cloudflare has completed 'Code Orange: Fail Small,' a major engineering initiative to prevent incidents like the November and December 2025 global outages. The project introduced progressive configuration rollouts with health monitoring, better failure modes that preserve service continuity, and improved incident management procedures to enhance network resilience for all customers.
AIWhen DNSSEC goes wrong: how we responded to the .de TLD outage
On May 5, 2026, DENIC's incorrect DNSSEC signatures for the .de TLD caused widespread DNS resolution failures, potentially affecting millions of German domains. Cloudflare's 1.1.1.1 resolver mitigated the impact through 'serve stale' functionality (RFC 8767) and Negative Trust Anchors (RFC 7646), continuing to serve cached records and temporarily disabling DNSSEC validation for .de domains until D
How We Use Claude to Triage Incoming Sales Inquiries
An honest postmortem of our internal AI-powered intake bot — wins, failures, and lessons.
Edge Compute is the New Branch Office
What happens when every retail store, oil rig, and hospital becomes its own micro-cloud.