Explore microservices security in this 53-minute conference talk from NDC Conferences. Discover how to leverage microservices architecture to enhance data and process security while avoiding potential pitfalls that could increase vulnerability. Gain insights into defense-in-depth strategies, various security options for fine-grained distributed architectures, and the impact of microservices on application security. Learn about HTTPS implementation, client-side certificates, data encryption at rest, vulnerability detection, security appliances, and multi-layered protection in polyglot environments. Examine real-world security breaches, their consequences, and preventive measures. Acquire a practical framework for approaching application security and understand how microservices can be utilized to build more secure systems. Suitable for developers, architects, technical leaders, and operations engineers interested in service and component design and architecture.
Overview
Syllabus
Introduction
Who is a doctor
Who washes their hands
North Attack Map
What are Microservices
All of our stuff is in one place
We effectively limit the scope
Multiple perimeters
Surface area of attack
Privacy
Attack Trees
HTTPS Everywhere
Lets Encrypt
Clientside Certificates
Off Question
Example
Data at Rest
Poll
Study
Snick
Detection
Vulnerability
Shellshock
Logs
Security Appliances
Multiple Layers
Polyglot
Human Aspects
Target
Fire
Home Depot
Ashley Madison
Tylenol
Adult Friend Finder
Recovery
Backups
Prevention
Questions
Taught by
NDC Conferences
