Build Systems that Drive Business
Sep 30–Oct 1, 2018: Training
Oct 1–3, 2018: Tutorials & Conference
New York, NY

Modern security best practices for microservices and distributed systems

Seth Vargo (Google)
1:30pm–2:10pm Wednesday, October 3, 2018
Building Secure Systems
Location: Gramercy Level: Intermediate
Secondary topics:  Resilient, Performant & Secure Distributed Systems
Average rating: ****.
(4.00, 2 ratings)

What you'll learn

  • Understand the key principles for securing microservices and distributed systems

Description

Equifax, Yahoo, the NSA, IHG, Hyatt, Uber, and eBay are just a few of the over 100 companies that reported security and data privacy breaches in 2017. For many organizations, the perimeter firewall has been the only required security, but with the move to cloud, no longer can users rely on a firewall as the only means of defense. Instead, we need to adopt defense in depth and rethink the way we do security in microservices. Just like DevOps, this is a collaborative process that requires changes throughout the stack from developers, operators, security professionals, and executives.

Hackers are getting more sophisticated in their attacks. As a result, we need a strong recipe to reduce the threat of intrusion, a mechanism for detecting security breaches and anomalies, and a process for quickly responding to security incidents (“break glass”).

Seth Vargo outlines the key principles for securing microservices and distributed systems in the modern world, where applications run in cloud or hybrid cloud infrastructure. You’ll learn the challenges associated with microservices and the principles of secure applications (think 12-factor apps, but for security); you’ll also discover how to implement time-based, limited-access controls and capture security practices and policy as code.

Photo of Seth Vargo

Seth Vargo

Google

Seth Vargo is an engineer at Google Cloud. Previously he worked at HashiCorp, Chef Software, CustomInk, and some Pittsburgh-based startups. He is the author of Learning Chef and is passionate about reducing inequality in technology. When he is not writing, working on open source, teaching, or speaking at conferences, Seth advises non-profits.