YoVDO

Reducing Mixtape to Master Key Scenarios - How to Block the Dark Army from Mayhem Using API-Driven Access Control

Offered By: Security BSides San Francisco via YouTube

Tags

Security BSides Courses Cybersecurity Courses Authorization Courses Key Management Courses Privileged Access Management Courses

Course Description

Overview

Explore strategies for implementing API-driven access control to enhance security and reduce the risks associated with "master key" privileges in this informative conference talk from BSidesSF 2017. Discover how to prevent unauthorized access and potential security breaches by implementing temporary, context-based privileged access. Learn about innovative approaches such as granting sudo permissions based on on-call schedules or requiring approved Jira tickets for sensitive database access. Gain insights into building a more secure infrastructure by eliminating permanent "master keys" and implementing dynamic, API-driven access control mechanisms that align with specific operational needs and security best practices.

Syllabus

Introduction
What is a mixtape
Master Keys
Authorization
Key Management
Options


Taught by

Security BSides San Francisco

Related Courses

Windows Server 2016: Securing Identities and Information
Microsoft via edX Implementing Microsoft Azure Privileged Identity Management
Pluralsight Microsoft 365 Security Administration (MS-500) Cert Prep: 1 Implement and Manage Identity and Access
LinkedIn Learning Securing Windows Server 2016: Managing Privileged Identities
LinkedIn Learning Securing Windows Server 2016
Udemy