8 min listen
Protecting Data in Apps and Protecting Apps from Data - ASW #92
Protecting Data in Apps and Protecting Apps from Data - ASW #92
ratings:
Length:
36 minutes
Released:
Jan 21, 2020
Format:
Podcast episode
Description
Apps must protect the data they collect. How can DevOps teams apply effective controls like strong authentication and authorization? How do cloud services help or hinder encrypting data? Envelope encryption uses multiple keys to protect data. It's a scalable pattern for protecting data and is nicely documented for AWS, Azure, and GCP. Be warned that each provider uses slightly different terminology for the same principle components. Kubernetes also supports this pattern. Data is also an attack vector that apps must protect themselves against. How relevant is the security recommendation of "use input validation" for modern apps? How can apps that rely on user-generated content or microservice architectures handle data securely? Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://wiki.securityweekly.com/ASWEpisode92
Released:
Jan 21, 2020
Format:
Podcast episode
Titles in the series (100)
Hack naked TV 56ish: In this episode we talk about the importance of being able to detect insider threats. by Security Weekly Podcast Network (Video)