Mais conteúdo relacionado
Semelhante a API Days - API Security & the Audit Paradox by Chris Swan (20)
Mais de Cohesive Networks (20)
API Days - API Security & the Audit Paradox by Chris Swan
- 16. © 2015
If a security event happens and it isn’t monitored
- 19. © 2015
We can put a bunch of ‘network’ onto a VM
Firewall
VPN
Switch
Router
- 20. © 2015
And add more functions into containers
Firewall
VPN
Switch
Router
Cache
TLS offload
WAF
Load Balancer
NIDS/NIPS
- 24. © 2015
ToDo: SecDevOps
APIs (to the network) are necessary but not sufficient:
Need to have them integrated into the overall system
Control metadata (and its mutability):
Must be visible and understandable
Security events need to be captured:
Then turned into something humans can action