|
 Название: Identity-Native Infrastructure Access Management: Preventing Breaches by Eliminating Secrets and Adopting Zero Trust (Final)
Автор: Ev Kontsevoy, Sakshyam Shah, Peter Conrad
Издательство: O’Reilly Media, Inc.
Год: 2023
Страниц: 163
Язык: английский
Формат: True EPUB (Retail Copy), PDF (conv), MOBI (conv)
Размер: 10.1 MB
Traditional secret-based credentials can't scale to meet the complexity and size of cloud and on-premises infrastructure. Today's applications are spread across a diverse range of clouds and colocation facilities, as well as on-prem data centers. Each layer of this modern stack has its own attack vectors and protocols to consider.
How can you secure access to diverse infrastructure components, from bare metal to ephemeral containers, consistently and simply? In this practical book, authors Ev Kontsevoy, Sakshyam Shah, and Peter Conrad break this topic down into manageable pieces. You'll discover how different parts of the approach fit together in a way that enables engineering teams to build more secure applications without slowing down productivity.
The world is changing. Infrastructure will continue to evolve. New tools, platforms, and technologies will spring into use alongside legacy products and services. Securing infrastructure will become more and more crucial, but also more difficult. The old approaches don’t work anymore. Without a basis in proven identity, vulnerabilities and friction inevitably develop, leading to increasing cost and a breakdown in trust. This book outlines an approach designed to bring trust back, providing chains of trust and chains of proof that reduce vulnerability and human error while making access policies easier to follow. By rebuilding trust, we aim to make it easier for people to work together securely. In fact, security should be something the average user doesn’t have to think about.
With this book, you'll learn:
• The four pillars of access: connectivity, authentication, authorization, and audit
• Why every attack follows the same pattern, and how to make this threat impossible
• How to implement identity-based access across your entire infrastructure with digital certificates
• Why it's time for secret-based credentials to go away
• How to securely connect to remote resources including servers, databases, K8s Pods, and internal applications such as Jenkins and GitLab
• Authentication and authorization methods for gaining access to and permission for using protected resources
Who Should Read This Book:
As a company grows, infrastructure access becomes more important and more difficult. Secret-based perimeter defenses don’t scale. This book is for anyone facing the challenges of defending an ever-growing infrastructure, whether on-premises, in the cloud, or both. The book is accessible to a reader with a modicum of technical skill and a passing familiarity with IT, networking, and the Linux command line. Whether you’re an executive, an IT policymaker, or a DevOps engineer, if you have responsibility for helping secure heterogeneous computing infrastructure, this book is for you.
Скачать Identity-Native Infrastructure Access Management: Preventing Breaches by Eliminating Secrets and Adopting Zero Trust (Final)
|
Автор: literator 21-09-2023, 22:06 | Напечатать
Уважаемый посетитель, Вы зашли на сайт как незарегистрированный пользователь.
|
|
|
Разделы сайта
Авторизация
Реклама
Identity-Native Infrastructure Access Management: Preventing Breaches by Eliminating Secrets and Adopting Zero Trust (Final) 
