Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Why Checking Infrastructure-as-Code for Misconfigurations Is Not Enough - Comprehensive Cloud-Native Application Security

OWASP Foundation via YouTube

Overview

Explore the limitations of focusing solely on misconfiguration checks in cloud-native application security in this 48-minute OWASP Foundation talk by Aakash Shah, CTO of Oak9. Learn why a comprehensive approach to security design is crucial for cloud-native applications, going beyond simple configuration checks. Discover best practices for dynamically assessing application architecture security, leveraging infrastructure-as-code automation, and addressing emergent properties in complex systems. Gain insights into modern software development trends, the importance of security-by-design principles, and strategies for holistically evaluating security and compliance objectives in cloud environments.

Syllabus

Intro
Software & Infrastructure Delivery PAST
Modern Infrastructure Development
Cloud Native Applications Today
Trends in Modern Software Development
Complex Systems and Emergent Properties
Security is an emergent property
Types of Emergence
Limitations of Misconfiguration checking
Addressing Cloud-Native Security
Loadbalancer. Logging
Managed Inspection Points for Database Interactions

Taught by

OWASP Foundation

Reviews

Start your review of Why Checking Infrastructure-as-Code for Misconfigurations Is Not Enough - Comprehensive Cloud-Native Application Security

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.