Exploring Microservice Security in an Open-Source Sock Shop

Slides

Abstract

Microservices are often lamented as “providing enough rope to hang yourself”, which gives the impression that microservices are inherently insecure. But if we do microservices right, we can improve security with a range of measures all designed to prevent further intrusion and disruption.

In this talk, you will discover a reference microservices architecture - the sock shop - which we will abuse in order to investigate microservice security on the Kubernetes orchestrator and Weave Net, a software-defined networking product from Weaveworks. Despite covering a range of topics, it will focus on the demonstration of two key areas: network policy and secure containers.

This talk is intended for a technical audience such as engineers, developers and architects, but will be of interest to anyone who has a stake in application and information security.

You will leave this talk with not only an understanding of some aspects of microservice security but also the knowledge of how to implement these findings. Furthermore, you will be able to test and demonstrate these ideas yourself through the use of a reference microservices application on an orchestrator of your choice.

Photos

More articles

Scaling StableAudio.com Generative Models Globally with NVIDIA Triton & Sagemaker

Learn from the trials and tribulations of scaling audio diffusion models with NVIDIA's Triton Inference Server and AWS Sagemaker.

Read more

Big Data in LLMs with Retrieval-Augmented Generation (RAG)

Explore how Retrieval-Augmented Generation (RAG) enhances Language Models by utilizing indexing, retrieval, and generation for up-to-date data access.

Read more
}