Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
DevOpsPorto Meetup6: Security in the wild by Re...
Search
DevOpsPorto
July 11, 2017
Technology
0
97
DevOpsPorto Meetup6: Security in the wild by Renato Rodrigues
Talk delivered by Renato Renato Rodrigues
DevOpsPorto
July 11, 2017
Tweet
Share
More Decks by DevOpsPorto
See All by DevOpsPorto
DevOpsPorto Meetup 38: Intro to FastAPI by Sebastián Ramírez
devopsporto
1
250
DevOpsPorto Meetup 38: Using cutting-edge open-source technologies to build one of the biggest industrial Data Lake of the World by Allan Sene
devopsporto
0
130
DevOpsPorto Meetup 37: Why averages lie by Filipe Oliveira
devopsporto
0
170
DevOpsPorto Meetup 36: Computing and Operations at CERN: From Physical HW to Virtualization and Containers by Ricardo Rocha
devopsporto
0
200
DevOpsPorto Meetup 35: Turbocharging Azure DevOps with Octopus Deploy by Derek Campbell
devopsporto
0
200
DevOpsPorto Meetup 34: Freelance and Remote - Is it possible in DevOps
devopsporto
0
150
DevOpsPorto Meetup 33: How DevOps supported La Redoute reinvention by Antoine Craske
devopsporto
0
240
K8s in AWS: Europe, US and The Great Wall of China
devopsporto
0
200
DevOpsPorto Meetup 31: Metrics, context driven management by Alexandre Martins
devopsporto
0
230
Other Decks in Technology
See All in Technology
7月のガバクラ利用料が高かったので調べてみた
techniczna
3
260
開発と脆弱性と脆弱性診断についての話
su3158
1
1.1k
Oracle Base Database Service:サービス概要のご紹介
oracle4engineer
PRO
2
20k
GCASアップデート(202506-202508)
techniczna
0
250
実践データベース設計 ①データベース設計概論
recruitengineers
PRO
2
200
Gaze-LLE: Gaze Target Estimation via Large-Scale Learned Encoders
kzykmyzw
0
310
歴代のWeb Speed Hackathonの出題から考えるデグレしないパフォーマンス改善
shuta13
6
600
人と組織に偏重したEMへのアンチテーゼ──なぜ、EMに設計力が必要なのか/An antithesis to the overemphasis of people and organizations in EM
dskst
5
600
RAID6 を楔形文字で組んで現代人を怖がらせましょう(実装編)
mimifuwa
0
300
モダンフロントエンド 開発研修
recruitengineers
PRO
2
260
Yahoo!ニュースにおけるソフトウェア開発
lycorptech_jp
PRO
0
340
フルカイテン株式会社 エンジニア向け採用資料
fullkaiten
0
8.6k
Featured
See All Featured
How to train your dragon (web standard)
notwaldorf
96
6.2k
Building Better People: How to give real-time feedback that sticks.
wjessup
367
19k
Faster Mobile Websites
deanohume
309
31k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
46
7.6k
Docker and Python
trallard
45
3.5k
How to Think Like a Performance Engineer
csswizardry
25
1.8k
Designing Experiences People Love
moore
142
24k
Gamification - CAS2011
davidbonilla
81
5.4k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
PRO
183
54k
Building an army of robots
kneath
306
46k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
667
120k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
31
2.5k
Transcript
Security in the wild By Renato Rodrigues
Who Am I Renato Rodrigues - - @simpsOn //pathonproject..com
Agenda The world as we know it Facing the world
Survival mode
The world as we know it Implementation of new features
New technology hype(s) Distorted notion of time New issues arise every day Security is not part of the process!
Facing the world Software Dev. Life Cycle
Requirements Who is going to use the system? How will
they use the system? What data should be input into the system? What data should be output by the system? Requirement Specification document
Requirements Product Team Security Perceptions Security Work Improvements
Design System Design helps in: - specifying hardware and system
requirements; - defining overall system architecture (interactions, structures, technologies,...). Implementation and Support Documentation
Design Architecture Teams Security Perceptions Security Work Improvements
Code The work is divided into modules/units and actual coding
is started. During this phase, the code should be the developer's main focus. Real Product
Code Development Teams Security Perceptions Security Work Improvements
Testing After code development, it is necessary to test it
against the requirements to verify that the product addresses the needs collected during the requirements stage. Product Validation!
Testing QA Teams Security Perceptions Security Work Improvements
Deployment After successful testing, the product can finally be delivered/deployed
to the customer. Live to the world!
Deployment DevOps Teams Security Perceptions Security Work Improvements
S. Software Dev. Life Cycle
Thank you for your time! Renato Rodrigues - - @simpsOn
//pathonproject..com