Название: Security as Code: DevSecOps Patterns with AWS (Second Early Release)Автор: BK Sarthak Das, Virginia Chu
Издательство: O’Reilly Media, Inc.
Год: 2022-09-20
Язык: английский
Формат: epub (true), mobi
Размер: 10.2 MB
DevOps engineers, developers, and security engineers have ever-changing roles to play in today's cloud native world. In order to build secure and resilient applications, you have to be equipped with security knowledge. Enter security as code. In this book, authors BK Sarthak Das and Virginia Chu demonstrate how to use this methodology to secure any application and infrastructure you want to deploy. With Security as Code, you'll learn how to create a secure containerized application with Kubernetes using CI/CD tooling from AWS and open source providers.
This practical book also provides common patterns and methods to securely develop infrastructure for resilient and highly available backups that you can restore with just minimal manual intervention.
As two people who did not start their careers in security, we both know that delivering software is of utmost importance to a developer. When we say “delivering software,” we mean delivering something that does what it is supposed to do. This could refer to the code, or that the software meets the functional requirements (for example, a calculator can add, multiply, subtract, and divide numbers) and performs without any issues (for example, a chat application allows more than 10 people to send messages to each other simultaneously).
Learn the tools of the trade, using Kubernetes and the AWS Code Suite
Set up infrastructure as code and run scans to detect misconfigured resources in your code
Create secure logging patterns with CloudWatch and other tools
Restrict system access to authorized users with role-based access control (RBAC)
Inject faults to test the resiliency of your application with AWS Fault Injector or open source tooling
Learn how to pull everything together into one deployment
Скачать Security as Code (Second Early Release)