The Application Security Weekly podcast delivers interviews and news from the worlds of AppSec, DevOps, DevSecOps, and all the other ways people find and fix software flaws. Join hosts Mike Shema, John Kinsella, and Akira Brand on a journey through modern security practices for apps, clouds, containers, and more.
https://securityweekly.com/asw
Making Service Meshes Work for People - Idit Levine - ASW #267
Service meshes create the opportunity to make security a team sport. They can improve observability and service identity. Turning monoliths into micro services sounds appealing, but maybe not every monolith needs to be broken up. We'll also talk about the maturity and design choices that go into service meshes and when a monolith should just remain a monolith.
Segment Resources:
- https://www.solo.io/blog/kubernetes-security-cloud-native-applications/
- https://www.solo.io/blog/apis-data-breach-zero-trust/
- https://www.solo.io/blog/api-gateways-productivity-resilience-security-cloud-applications/
In the news, Nagios gets a review from NCC Group, hackers hack some anti-fixing code to fix trains in Poland, abusing OAuth post-compromise, 5Ghoul flaws in 5G networks, MITRE teases a new threat model for embedded systems, a conversation on vuln scoring systems, and more!
Visit https://securityweekly.com/asw for all the latest episodes!
Follow us on Instagram: https://www.instagram.com/secweekly/
Like us on Facebook: https://www.facebook.com/secweekly
Show Notes: https://securityweekly.com/asw-267