Testing SDKs at Twilio

The SDK Engineering group at Twilio is responsible for building and maintaining two real-time communications products – Twilio Client – a set of web and mobile SDKs for making and receiving VoIP calls, and Programmable Video – a set of SDKs for adding video chat capabilities to developers’ apps. We’ve seen first-hand how the testing requirements for building video SDKs differ vastly from those for typical… Read More

Why We Support Individual Privacy and Security

Data scientists, cryptographers and cybersecurity experts, including those who work for the U.S. government, stress how important it is for software developers to practice  “security by design.” In other words, as builders, we’re responsible for considering security from day one of development. This is why, in light of the Apple v. Lynch case, we have serious concerns about deliberately weakening secure communications. Doing so puts the… Read More

Lessons From Germany: Communicating with Customers

Twilio_Blog_Germany-Launch

Powering modern communication is what we hang our hat on. That means giving you the tools to build instant, context-driven, interactive communications into the apps that interface with your customers. It also means customizing that experience in every region where you do business so that you portray a local familiar brand. This was the idea behind commissioning a small survey in a not-so-small country where we… Read More

Security Notification for SSLv3 POODLE Vulnerability

As you know, a number of news sources, corporations and the OpenSSL team reported yesterday 14 October 2014 that version 3 of Secure Sockets Layer (SSLv3) is vulnerable at the protocol level. We are urging all customers to disable SSLv3 on hosts interacting with the Twilio service as soon as possible and upgrade to use Transport Layer Service (TLS). Owing to many clients and servers connecting… Read More

Security Update for CVE-2014-6271 (Shellshock)

On Wednesday morning, September 24, 2014, the Twilio security team became aware of a code-injection vulnerability in bash dubbed CVE-2014-6271 and nicknamed “Shellshock.” While Twilio does not expose any of the services identified as vulnerable in this disclosure to the public Internet, our operations team responded immediately to upgrade affected bash versions across the Twilio infrastructure.  That effort was completed in the afternoon on Wednesday. Our… Read More

Getting To Know Your Twilio Short Code: Rules, Regulations and Capabilities

Twilio_Blog_Message-Delivery-Info_2x-1

Twilio short codes are a powerful tool for reaching your users faster, enabling your app to send messages at a rate of 1,800 per minute. This high-throughput is perfect for apps that need to send time-sensitive or bulk messages. But with great power comes great responsibility. Wireless carriers, together with organizations like the Mobile Marketing Association (MMA) and the Wireless Association (CTIA), have developed a rigorous… Read More

Introducing Twilio CX for Chromebooks: Taking Enterprise Communications Into The Era of Software

Twilio CX for Chromebooks

Relying on hardware to power your communications can weigh your business down. We worked with Google to help free enterprises from hardware closets, cables and clunky desk phones and bring them into the age of flexible, scalable software. Today we’re happy to announce Twilio CX for Chromebooks, a ready-to-use software powered communications solution running entirely on a Chromebook using Chrome OS. There’s no set up or… Read More

Security Notice for June 5th OpenSSL Vulnerability Disclosure

Early Thursday, 5 June 2014, the OpenSSL team released an advisory detailing seven vulnerabilities affecting all maintained branches of OpenSSL.  Our engineering team responded to the disclosure early this morning and completed the upgrade of our public-facing production infrastructure at 3:30 PM PDT. All our public endpoints are upgraded to protect against CVE-2014-0224 and the other vulnerabilities disclosed today. In addition, the versions of OpenSSL shipped… Read More