Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Cosmos DB Security
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Muhammad Sajid
June 17, 2020
Technology
58
0
Share
Cosmos DB Security
Muhammad Sajid
June 17, 2020
More Decks by Muhammad Sajid
See All by Muhammad Sajid
When Stateful Serverless met Planet-scale Event-sourcing
msajid
0
150
Azure App configuration
msajid
2
870
Other Decks in Technology
See All in Technology
Building Production-Ready Agents Microsoft Agent Framework
_mertmetin
0
120
ServiceNow Knowledge 26 の歩き方
manarobot
0
260
AI活用時代の事業判断高度化を導くエンジニアリング基盤 / 20260424 Atsushi Funahashi
shift_evolve
PRO
2
110
GitHub Copilot CLI と VS Code Agent Mode の使い分け
tomokusaba
0
110
国内外の生成AIセキュリティの最新動向 & AIガードレール製品「chakoshi」のご紹介 / Latest Trends in Generative AI Security (Domestic & International) & Introduction to AI Guardrail Product "chakoshi"
nttcom
4
1.6k
エージェントスキルを作って自分のインプットに役立てよう
tsubakimoto_s
0
490
色を視る
yuzneri
0
290
EMから幅を広げるために最近挑戦していること / Recent challenges I'm undertaking to expand my horizons beyond EM
hiro_torii
1
170
20260428_Product Management Summit_Loglass_JoeHirose
loglassjoe
4
5.8k
M5Stack CoreS3とZephyr(RTOS)で Edge AIっぽいことしてみた
iotengineer22
0
400
Good Enough Types: Heuristic Type Inference for Ruby
riseshia
1
380
バイブコーディングで3倍早く⚪⚪を作ってみた
samakada
0
200
Featured
See All Featured
Amusing Abliteration
ianozsvald
1
160
Fireside Chat
paigeccino
42
3.9k
How to audit for AI Accessibility on your Front & Back End
davetheseo
0
330
Bash Introduction
62gerente
615
210k
Kristin Tynski - Automating Marketing Tasks With AI
techseoconnect
PRO
0
230
Abbi's Birthday
coloredviolet
2
7.3k
GraphQLとの向き合い方2022年版
quramy
50
15k
GitHub's CSS Performance
jonrohan
1032
470k
Designing Powerful Visuals for Engaging Learning
tmiket
1
350
Utilizing Notion as your number one productivity tool
mfonobong
4
300
Crafting Experiences
bethany
1
130
Side Projects
sachag
455
43k
Transcript
#StockholmAzure Meetup Sponsors
Hardening Cosmos DB Security and Machine Learning In Microsoft Eco-System
Muhammad Sajid Mohammed Osman
Vi samarbeta med restaurang K-märkt och "Mattillvården". För varje anmäld
deltagare lagar restaurang K-Märkt en härlig lunch/middagslåda och levererar den till Danderyds Sjukhus.
Muhammad Sajid Cloud Solutions Architect with a passion for designing
and developing cloud-native solutions. Interested in DDD, Distributed Event-Driven systems, BIG data, and IoT. @sajid_nazeer linkedin.com/in/musa
None
Hardening Cosmos DB Security
Azure Policy support for Azure Cosmos DB
Encryption at Rest (on by default) • Service managed Keys
◦ 1st layer of encryption • Customer managed Keys ◦ 2nd layer of encryption
None
Get, Wrap, Unwrap
None
None
IP filter
Minimum TLS version? And Weak ciphers
None
None
None
Network Isolation using Private link Private access to Azure PaaS
Services
None
Demo
Takeaways • Use Azure policies • Use customer managed keys
feature only when required • Use Private link feature to reduce the attack surface • Contact Microsoft for TLS version • Don’t settle for the right solutions . Find new ones, and keep learning.
Questions?
@sajid_nazeer linkedin.com/in/musa
msajid
_mertmetin
manarobot
shift_evolve
tomokusaba
nttcom
tsubakimoto_s
yuzneri
.jpg){kind=avatar}
hiro_torii
loglassjoe
iotengineer22
riseshia
samakada
ianozsvald
paigeccino
davetheseo
62gerente
techseoconnect
coloredviolet
quramy
jonrohan
tmiket
mfonobong
bethany
sachag
