Microservices Security Landscape - 2018

Explore the critical aspects of securing microservices architecture in this 44-minute conference talk from LASCON. Delve into the expanded attack surface created by multiple remotely communicating microservices and understand why getting security right is crucial in this design. Learn about the importance of a proper secure development lifecycle and test automation strategy to prevent vulnerabilities at the code level. Discover the role of static code analysis and dynamic testing in the continuous delivery process. Examine common deployment patterns, particularly the service-per-host model using containers, and address container-level security concerns. Investigate authentication, access control, and secure communication between microservices. Gain insights into securing microservices from multiple perspectives, including SDLC, DevOps, and application-level security, to ensure a robust and protected microservices ecosystem.

2018 - Microservices Security Landscape - Prabath Siriwardena