Overview
Explore Netflix's multi-layered approach to reducing credential compromise risk in this 52-minute conference talk from AppSecCali 2019. Discover the "secret sauce" of Netflix's Infrastructure Security, learning how they combine various security measures to create a robust defense system. Gain insights into credential management, role permissions, anomaly detection, and application security practices. Understand how Netflix implements layered controls, handles unique user roles, and utilizes metadata services to enhance security. Learn about their strategies for maintaining hygiene, managing application credentials, and implementing identity checks. Apply these lessons to strengthen your own organization's security posture against potential attackers.
Syllabus
Intro
Road to Credentials
Credential Management
Role Permissions
Credentials
Console Me
Anomaly Detection
Anchovies
photorealistic pizza
unique rolls per user
Metadata service
Layered controls
Uncontrollable
Hygiene and Development
Application Credentials
Roll Explosions
Identity Check
Airbnb Stream Alert
Taught by
OWASP Foundation