Towards Verifiable Infrastructure Security

Infrastructure as Code
Towards Verifiable Infrastructure Security
Abhisek Datta
Head of Technology, Appsecco

View Slide

Lets start with how attackers work
An attacker wants to hack a target and for this, will
perform a bunch of activities
1. Online Attack Surfaces
2. Breached Credentials
3. Known Vulnerable Software
4. (Easy to?) exploit security vulnerabilities
5. If nothing works
• Invest skill and resources in 0days

View Slide

What is the root cause?
Inspite of so much investment in security, why does low hanging fruits still
exist for an attacker to exploit?

View Slide

How to be secure?
By establishing
TRUST

View Slide

How does trust looks like?
A DFD representing the Transaction Flow in a Online Banking Application
Re-auth
Anti-
fraud
Confirm with
sender for high
value
transactions

View Slide

The Challenge of Security at Scale
This is the Amazon Microservices Graph
The
Challenge of
Security at
Scale is really
–
The
SCALE

View Slide

How do we solve this? (My Opinion)
• By applying the principles of Secure Software
Development Life-cycle while building Infrastructure
• Requirement Analysis
• Design
• Versioning
• Secure Development
• Testing & Verification
• Deployment
• Rolling Update
• Rollback (if required)

View Slide

Infrastructure as Code

View Slide

What is it?
• The process of provisioning and managing
infrastructure through machine readable code &
configuration
• It is an alternative approach compared to managing
physical hardware and provisioning them with
interactive setup and configuration tools

View Slide

The Tooling with an Example
1. Setup 3 EC2
instances in AWS
2. Setup an EFS for
shared state
3. Deploy containers
4. Collect output
5. Monitor for
availability

View Slide

Options for Adoption - Infrastructure
IaaS Platform Tools Vendor
GCP, AWS, Azure Terraform Hashicorp
AWS Cloud Formations AWS
Azure Azure Resource
Manager
Microsoft
Google Cloud Deployment
Manager
Google

View Slide

What can be done with it?
• Codify infrastructure
• Version control
• Test & Verify
• Bug Fix
• Automated & Continuous Deployment

View Slide

Verifiable Infrastructure
What is it really?

View Slide

Enterprise Security Requirements
Can we agree, that the most important requirement is
To not get breached?

View Slide

How to be secure?
By establishing
TRUST

View Slide

Secure Software Development Lifecycle
Security
Requirements
Secure
Architecture
Secure
Development
Security
Testing
Exploit
Mitigation
Release
Management

View Slide

Mapping SSDLC to Infrastructure as Code
SSDLC Secure Infrastructure
Security Requirements Security Requirements
Secure Architecture Secure Architecture
Secure Development Infrastructure as Code
Security Testing Static Analysis and Verification
Exploit Mitigation Anomaly Detection and Prevention
Release Management Release Management

View Slide

An Example of Verifying Infrastructure
A journey towards adopting infrastructure as code

View Slide

A proposed network architecture

View Slide

Codify the Infrastructure (Example uses AWS)

View Slide

The Graph

View Slide

The Threat Model

View Slide

Now what?
• Add security controls (mitigations) in architecture
• Edit code to include the required resources and
configuration
• Push to repository
• This triggers CI/CD
• CI/CD runs test cases on code (if any)
• CI/CD update the live infrastructure

View Slide

Build
Test
Deploy
Audit
Update
How does it all look like?

View Slide

Questions?
[email protected]
That’s all for now.. J
https://appsecco.com
@abh1sek
github.com/abhisek

View Slide

Towards Verifiable Infrastructure Security

Towards Verifiable Infrastructure Security

Abhisek Datta

More Decks by Abhisek Datta

Other Decks in Technology

Featured

Transcript