Microservices give us many options. We can pick different technologies, mix synchronous and asynchronous integration techniques or embrace different deployment patterns. But they also give us different options for how we think about securing our systems.
Done right, and microservices can increase the security of your vital data and processes.
Done wrong, and you can increase the surface area of attack. This talk will discuss the importance of defence in depth, discussing the many different ways in which you can secure your fine-grained, distributed architectures.
The audience should come away with a working framework for thinking about application security, and also understand how microservices can help (or hinder) building a secure system.
67. @samnewman#asas2017
“44 percent of security breaches occur after
vulnerabilities and solutions have been
identified. In other words, the problems could
have been avoided if found vulnerabilities had
been addressed sooner.”
• Forbes/BMC, 2016
Source: https://betanews.com/2016/01/12/data-breaches-and-cyber-attacks-are-often-caused-by-failing-to-patch-known-
vulnerabilities/
Original Report: https://www.forbes.com/sites/forbespr/2016/01/12/enterprises-face-unnecessary-risks-to-data-loss-and-
downtime-says-report-by-forbes-insights-and-bmc/