"Defense in Depth": Trench Warfare Principles for Building Secure Distributed Applications
Please log in to watch this conference skillscast.
It comes to no surprise, that any microservices, any security controls you use to build applications – will eventually be broken (or fail). Under certain pressure, some components will fail together.
The question is – how do you build your systems in a way that security incidents won't happen even if some components fail. And the data leaks won't occur even if penetration tests are successful.
"Defense in depth" is a security engineering pattern, that suggests building an independent set of security controls aimed at mitigating more risks even if the attacker crosses the outer perimeter. During the talk, Anastasiia will model threats and risks for the modern web application, and improve it by building multiple lines of defence. She will overview high-level patterns and exact tools from the security engineering world and explain them to the modern web devs ;)
She won't: crack real applications, discuss how insecure JWT tokens are, steal WiFi passwords
She will: discuss practical security engineering approaches, cover security controls from complex encryption schemes to modern DevOps tools
YOU MAY ALSO LIKE:
- Introduction to Docker Fundamentals (in London on 30th September - 1st October 2019)
- µCon London 2020 - The Conference on Microservices, DDD & Software Architecture (in London on 27th - 29th May 2020)
- Running Stateful Applications in Kubernetes (in London on 5th September 2019)
- Software Architecture for Developers Workshop (in London on 9th - 10th September 2019)
- Functional Concurrency in .NET with C# and F# (in London on 9th - 10th September 2019)
- ProgNET London 2019 (in London on 11th - 13th September 2019)
- CloudNative London 2019 (in London on 25th - 27th September 2019)
- XP as we would do it today (in London on 27th August 2019)
- Keynote by Iris Classon on .NET Core and More: 30 Things You Should Know (in London on 28th August 2019)
- How To Avoid Abrupt Climate Change (SkillsCast recorded in August 2019)
- Domain Driven Design in Practice with Helin Ece Akgul (SkillsCast recorded in August 2019)
Thanks to our sponsors
"Defense in Depth": Trench Warfare Principles for Building Secure Distributed Applications
Anastasiia Voitova
Anastasiia is a Product Engineer at Cossack Labs.
Please log in to watch this conference skillscast.
It comes to no surprise, that any microservices, any security controls you use to build applications – will eventually be broken (or fail). Under certain pressure, some components will fail together.
The question is – how do you build your systems in a way that security incidents won't happen even if some components fail. And the data leaks won't occur even if penetration tests are successful.
"Defense in depth" is a security engineering pattern, that suggests building an independent set of security controls aimed at mitigating more risks even if the attacker crosses the outer perimeter. During the talk, Anastasiia will model threats and risks for the modern web application, and improve it by building multiple lines of defence. She will overview high-level patterns and exact tools from the security engineering world and explain them to the modern web devs ;)
She won't: crack real applications, discuss how insecure JWT tokens are, steal WiFi passwords
She will: discuss practical security engineering approaches, cover security controls from complex encryption schemes to modern DevOps tools
YOU MAY ALSO LIKE:
- Introduction to Docker Fundamentals (in London on 30th September - 1st October 2019)
- µCon London 2020 - The Conference on Microservices, DDD & Software Architecture (in London on 27th - 29th May 2020)
- Running Stateful Applications in Kubernetes (in London on 5th September 2019)
- Software Architecture for Developers Workshop (in London on 9th - 10th September 2019)
- Functional Concurrency in .NET with C# and F# (in London on 9th - 10th September 2019)
- ProgNET London 2019 (in London on 11th - 13th September 2019)
- CloudNative London 2019 (in London on 25th - 27th September 2019)
- XP as we would do it today (in London on 27th August 2019)
- Keynote by Iris Classon on .NET Core and More: 30 Things You Should Know (in London on 28th August 2019)
- How To Avoid Abrupt Climate Change (SkillsCast recorded in August 2019)
- Domain Driven Design in Practice with Helin Ece Akgul (SkillsCast recorded in August 2019)
Thanks to our sponsors
"Defense in Depth": Trench Warfare Principles for Building Secure Distributed Applications
Anastasiia Voitova
Anastasiia is a Product Engineer at Cossack Labs.