Explore a generalizable solution for automatically enforcing authentication controls across all services throughout their development lifecycle in this Black Hat conference talk. Learn how to implement a system that requires minimal operational overhead for development and security teams while maintaining project autonomy. Discover the concepts of unmanaged services, proxying techniques including App Engine Proxy and Leaf Proxy, and managed services. Gain insights into a comprehensive approach for securing applications in open-by-default cloud environments, presented by Winston Howes and Michael Wozniak. Delve into topics such as introduction, enumeration, and engage in a Q&A session to deepen your understanding of this security solution.
Overview
Syllabus
Introduction
Unmanaged Services
Proxying
App Engine Proxy
Leaf Proxy
Managed Services
Solution
QA
Enumeration
Taught by
Black Hat