Overview
Syllabus
Intro
Who am I
Fundamentals
The monolith
The basics
Types of threats
Stack Overflow
WASP
Authentication Authorization
Microservices
Planning
Authorization
Publicfacing API
Tokenization
Input Validation
First Time Round
Application Security
Monster Microservice
Coupling
Its not your code
Orchestration layer
Tiny components
Is this worrying
We are incredibly lazy
Features that scare me
How do we do this
Challenge us
Principle of Least Privilege
Define Your Roles
Finegrained Permissions
Logging and Monitoring
Mutable Architecture
Compliance
Perspective
Security benefit
Languages
Tools
Interdependency
Puppy analogy
Logging
Denial of Service
Hacking Team
Logs
Wrap up
Taught by
GOTO Conferences