Rethinking Security from the Ground Up with a Microservices Mindset

Slide Note
Embed
Share

The presentation at OSCON 2016 by Andy Randall, CEO of Tigera, discussed the importance of rethinking security strategies with a microservices mindset. Project Calico, sponsored by Tigera, emphasizes the need for better security measures to prevent breaches like the ones faced by Sony. The talk highlighted the challenges posed by increased complexity and the importance of resource fungibility in modern cybersecurity practices.

dem_kon
dem_kon Follow

Uploaded on Sep 21, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Rethinking security from the ground up with a microservices mindset OSCON 2016 Andy Randall | CEO, Tigera | @andrew_randall May 17, 2016 Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  2. Introductions Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  3. Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  4. Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  5. Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  6. For more than two months Sonys hackers roamed freely, identifying what they wanted to steal. This was possible because the studio, with few exceptions, didn t segregate or provide extra security for even its most precious secrets. In effect,once the invaders made it past the network gates they could go anywhere they wanted because Sony hadn t locked any doors. Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  7. Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  8. DMZ Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  9. Generalizing to the n-tier DMZ (where n usually = 3) Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  10. Fast forward to the present Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  11. Increased complexity Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  12. Resource Fungibility Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  13. Virtualize the n-tier model with layer 2 overlays + virtual firewalls? Virtual L2 network Virtual L2 network Virtual L2 network Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  14. Tear down the walls? Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  15. The opportunity? Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  16. The opportunity? Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  17. The Distributed Firewall eth0 eth0 192.168.1.2 192.168.1.5 10.0.0.1 10.0.0.2 Routing Routing eth0 eth0 eth0 eth0 Network Fabric 192.168.1.4 192.168.1.6 eth0 eth0 192.168.1.7 192.168.1.3 Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  18. Project Calico architecture Developer intent from orchestrator eth0 iptables Felix 192.168.1.2 Routes eth0 192.168.1.4 Route Reflector BGP eth0 Kernel 192.168.1.7 Route as native IP without L2 overlays Project Calico is sponsored by Tigera, Inc. | www.tigera.io

  19. Where this is headed De facto industry standard for policy-driven networking for cloud native applications Flat routed IP networking with fine-grained policy Broad set of overlay options Project Calico is sponsored by Tigera, Inc. | www.tigera.io

Related


Understanding Microservices Architecture for Libraries

Understanding Microservices Architecture for Libraries

marigold
Understanding the Transition to Microservices Architecture

Understanding the Transition to Microservices Architecture

nada_ryl
Understanding the Power of Growth Mindset

Understanding the Power of Growth Mindset

nedt473
Understanding Grit and Growth Mindset in Personal Development

Understanding Grit and Growth Mindset in Personal Development

pry_mat
Embracing Growth Mindset for Student Success

Embracing Growth Mindset for Student Success

ardi_847
Understanding the Impact of Mindset on Academic Achievement

Understanding the Impact of Mindset on Academic Achievement

kaer132
Understanding the Impact of Growth Mindset on Teaching and Learning

Understanding the Impact of Growth Mindset on Teaching and Learning

adebr
Developing a Growth Mindset Through Feedback and Goal Setting

Developing a Growth Mindset Through Feedback and Goal Setting

hickerson_b
Empowering Imperial's Future with Microservices: Advantages, Challenges, and Benefits

Empowering Imperial's Future with Microservices: Advantages, Challenges, and Benefits

euan193
Stability Patterns to Combat Microservices Antipatterns

Stability Patterns to Combat Microservices Antipatterns

mand558
Understanding the Importance of Mindset in Education

Understanding the Importance of Mindset in Education

ettie
Understanding Mindsets: Fixed vs. Growth Mindset Explained

Understanding Mindsets: Fixed vs. Growth Mindset Explained

salome
Understanding Growth Mindset in Nursing Education

Understanding Growth Mindset in Nursing Education

divye
Ground Guide Course for Vehicle Safety at OntR Museum

Ground Guide Course for Vehicle Safety at OntR Museum

mateusz
Explore Your Mathematical Mindset and Beliefs Towards Maths

Explore Your Mathematical Mindset and Beliefs Towards Maths

kiaan
Exploring Attitude, Mindset, and Success

Exploring Attitude, Mindset, and Success

joah
Exploring Situational Leadership and Mindset in Educational Leadership

Exploring Situational Leadership and Mindset in Educational Leadership

averi
Exploring Mindset Adjustments for Positive Change

Exploring Mindset Adjustments for Positive Change

karlishia
Enhancing Team Grit: Bridging Counseling Centers and Athletic Departments

Enhancing Team Grit: Bridging Counseling Centers and Athletic Departments

emmersenf
Enhancing Student Resilience and Learning Success

Enhancing Student Resilience and Learning Success

tillmon_m
Essential Skills and Mindset for Successful Innovators and Entrepreneurs in the Asia-Pacific Region

Essential Skills and Mindset for Successful Innovators and Entrepreneurs in the Asia-Pacific Region

mbrun
Rethinking ECC in the Era of Row-Hammer

Rethinking ECC in the Era of Row-Hammer

naia
Understanding the Role of Security Champions in Organizations

Understanding the Role of Security Champions in Organizations

irvin
Understanding the Roles of a Security Partner

Understanding the Roles of a Security Partner

zaara

More Related Content

Effective Strategies for Virtualizing Intrusion Detection Systems
Effective Strategies for Virtualizing Intrusion Detection Systems
Soft Security and Migration Management in the Baltic Sea Region
Soft Security and Migration Management in the Baltic Sea Region
Understanding Security in World Politics
Understanding Security in World Politics
Rethinking Work: Insights from Barry Schwartz's Speech
Rethinking Work: Insights from Barry Schwartz's Speech
A Comprehensive Guide to Pump-able Primary Grout Mix Designs for Soft Ground Tunnelling Operations
A Comprehensive Guide to Pump-able Primary Grout Mix Designs for Soft Ground Tunnelling Operations
Complete the Ground Travel Worksheet - Step-by-Step Guide
Complete the Ground Travel Worksheet - Step-by-Step Guide
Understanding Computational Complexity in Quantum Hamiltonians
Understanding Computational Complexity in Quantum Hamiltonians
In-Depth Guide to Ground Squirrel Control for Alfalfa and Grass Crops
In-Depth Guide to Ground Squirrel Control for Alfalfa and Grass Crops
Strategic Ground-Based Support for NASA Missions
Strategic Ground-Based Support for NASA Missions
Workflow Design and Implementation Challenges in Change Management
Workflow Design and Implementation Challenges in Change Management
BCA 601(N): Computer Network Security
BCA 601(N): Computer Network Security
Enhancing Security Definitions for Functional Encryption
Enhancing Security Definitions for Functional Encryption
International Approaches to Enhance Nuclear Safety and Security
International Approaches to Enhance Nuclear Safety and Security
TSA Updates on Security Training Rule for OTRB Companies
TSA Updates on Security Training Rule for OTRB Companies
AEP Enterprise Security Program Overview - June 2021 Update
AEP Enterprise Security Program Overview - June 2021 Update
Evolving Security Practices in DevOps: A Holistic Approach
Evolving Security Practices in DevOps: A Holistic Approach
Certification and Training in Information Security
Certification and Training in Information Security
Understanding Security Onion: Network Security Monitoring Tools
Understanding Security Onion: Network Security Monitoring Tools
Overview of Social Security and Health Care System in Turkey
Overview of Social Security and Health Care System in Turkey
Understanding Transport Layer Security (TLS)
Understanding Transport Layer Security (TLS)
Understanding Cyber Security and Risks
Understanding Cyber Security and Risks
Understanding Provable Security Models in Cryptography
Understanding Provable Security Models in Cryptography
Understanding Computer Security Principles and Practices
Understanding Computer Security Principles and Practices
Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication
Legal Framework on Information Security in the Ministry of Trade, Tourism, and Telecommunication