Security at Scale

Transcript

1. Open Source Cloud Strategies and Solutions Towards Reliability and Compliance

   Security at Scale

2. Open Source is the default.

3. 96% of applications have OSS dependencies and they're in your

   repos. 96% of applications have OSS dependencies and they're in your repos.

4. Sr. Developer Advocate at HashiCorp for Infrastructure and Orchestration @ksatirli

   he / him Kerim Satirli

5. developer's environment and remote experiences develop developer's environment and build

   environments build build environments and artifact registries store orchestration platforms (Nomad, Kubernetes etc) run Software Delivery Lifecycle

6. trust trust developer's environment and remote experiences developer's environment and

   build environments build environments and artifact registries orchestration platforms (Nomad, Kubernetes etc) trust trust Software Delivery Lifecycle

7. Using unverified code is like doing a trust fall with

   people you don't know.

8. Assume hostile intent for any unverified code.

9. 01 Securing Development

10. ! dscl . -read /Groups/admin GroupMembership GroupMembership: root Terminal "

11. ! dscl . -read /Groups/admin GroupMembership GroupMembership: root kerim #

    Terminal $

12. Endpoint Protection is important.

13. Securing Development Level 1 ▪ clear guidelines on what is

    acceptable and what isn’t ▪ locally available tooling to verify code meets rulesets Level 2 ▪ automated linting and testing after git push ▪ cryptographically signed and verified commits Level 3 ▪ branch protection and required trust levels ▪ no unaudited bypassing of security functionality

14. 02 Protecting Builds

15. Protecting Builds Level 1 ▪ no builds using unsigned or

    unverified commits ▪ build server configuration is codified and tested Level 3 ▪ all builds have a validated software bill of materials ▪ all builds are hermetic, all dependencies packaged Level 2 ▪ actively create and store tamper-proof build logs ▪ build server configuration uses strong addressing

16. 03 Safeguarding Artifacts

17. Safeguarding Artifacts Level 1 ▪ artifacts must be fully cryptographically

    signed ▪ monitor for outliers in artifact attributes Level 2 ▪ isolate artifact servers by application environment ▪ limit admin access and regularly audit access Level 3 ▪ all dependencies must be explicitly allowed for use ▪ artifacts must pass regular scans while "live"

18. 04 Securing Orchestrators

19. Securing Orchestrators Level 1 ▪ consider the shared responsibility model

    ▪ lock down ingress and egress of service interface Level 2 ▪ only allow codified workloads to be executed ▪ define a clear secrets management strategy Level 3 ▪ right-size hardware and monitor for zombie usage ▪ build patterns to fail securely instead of safely

20. Codified Patterns github.com/workloads/

21. Defense requires Layers.

22. Layers require People.

23. Security is a Team Sport.

24. Open Source Cloud Strategies and Solutions speakerdeck.com/ksatirli Thank you