Overview
Explore the emerging discipline of Security Chaos Engineering in this 23-minute conference talk by Aaron Rinehart, pioneer and O'Reilly author. Discover how to proactively identify system weaknesses before malicious adversaries can exploit them. Learn about the importance of continuous security experimentation in building confidence in security mechanisms and developing a learning culture around system security. Understand the concept of moving from subjective assessment to objective measurement in security practices. Gain insights into implementing Security Chaos Engineering in your organization to create highly secure, performant, and resilient distributed systems. Delve into topics such as complexity in software, legacy systems, the context-dependent nature of security, and the process of detecting security measure failures. Explore real-world use cases and practical applications of this innovative approach to cybersecurity.
Syllabus
Intro
Outline
Background
The Issue
Complexity
Software
Chaos Engineering
Legacy Systems
System Engineering is Messy
Security is a Context Dependent Discipline
Testing and Experimentation
Detecting Security Measures Fail
What Happens During a Security Incident
Chaos Engineering Definition
Chaos Engineering Books
Newsflash
Security Kiosk Engineer
Use Cases
Response
Chaosing
Chaoslinger
Taught by
OWASP Foundation