Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cosmos DB Security

Avatar for Muhammad Sajid Muhammad Sajid
June 17, 2020
Technology
0
54

Cosmos DB Security

Avatar for Muhammad Sajid

Muhammad Sajid

June 17, 2020
Tweet

More Decks by Muhammad Sajid

See All by Muhammad Sajid
When Stateful Serverless met Planet-scale Event-sourcing
Avatar for Muhammad Sajid msajid
0
140
Azure App configuration
Avatar for Muhammad Sajid msajid
2
830

Other Decks in Technology

See All in Technology
生成AI時代の開発組織・技術・プロセス 〜 ログラスの挑戦と考察 〜
Avatar for Hiroshi Ito itohiro73
0
150
Windows 11 で AWS Documentation MCP Server 接続実践/practical-aws-documentation-mcp-server-connection-on-windows-11
Avatar for emi emiki
0
960
AIの最新技術&テーマをつまんで紹介&フリートークするシリーズ #1 量子機械学習の入門
Avatar for Takahiro Esaki tkhresk
0
140
なぜ私はいま、ここにいるのか? #もがく中堅デザイナー #プロダクトデザイナー
Avatar for 弁護士ドットコム bengo4com
0
410
解析の定理証明実践@Lean 4
Avatar for H Segawa dec9ue
0
180
GitHub Copilot の概要
Avatar for tomokusaba tomokusaba
1
130
LinkX_GitHubを基点にした_AI時代のプロジェクトマネジメント.pdf
Avatar for AIxIoTビジネス共創ラボ iotcomjpadmin
0
170
CI/CD/IaC 久々に0から環境を作ったらこうなりました
Avatar for Kaz Watanabe kaz29
1
170
Amazon Bedrockで実現する 新たな学習体験
Avatar for Kazuki Maeda kzkmaeda
2
540
PHPでWebブラウザのレンダリングエンジンを実装する
Avatar for ディップ株式会社 dip_tech
PRO
0
200
How Community Opened Global Doors
Avatar for hiroramos hiroramos4
PRO
1
120
PHP開発者のためのSOLID原則再入門 #phpcon / PHP Conference Japan 2025
Avatar for shogogg shogogg
4
730

Featured

See All Featured
Build The Right Thing And Hit Your Dates
Avatar for Maggie C. maggiecrowley
36
2.8k
GitHub's CSS Performance
Avatar for Jon Rohan jonrohan
1031
460k
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
512
110k
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
53
7.7k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
26
2.9k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
Avatar for Vitaly Friedman smashingmag
252
21k
Understanding Cognitive Biases in Performance Measurement
Avatar for Philip Tellis bluesmoon
29
1.8k
Docker and Python
Avatar for Tania Allard trallard
44
3.4k
Optimising Largest Contentful Paint
Avatar for Harry Roberts csswizardry
37
3.3k
Sharpening the Axe: The Primacy of Toolmaking
Avatar for Bryan Cantrill bcantrill
44
2.4k
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
331
22k
Fireside Chat
Avatar for paigeccino paigeccino
37
3.5k

Transcript

  1. #StockholmAzure Meetup Sponsors

  2. Hardening Cosmos DB Security and Machine Learning In Microsoft Eco-System

    Muhammad Sajid Mohammed Osman

  3. Vi samarbeta med restaurang K-märkt och "Mattillvården". För varje anmäld

    deltagare lagar restaurang K-Märkt en härlig lunch/middagslåda och levererar den till Danderyds Sjukhus.

  4. Muhammad Sajid Cloud Solutions Architect with a passion for designing

    and developing cloud-native solutions. Interested in DDD, Distributed Event-Driven systems, BIG data, and IoT. @sajid_nazeer linkedin.com/in/musa
  5. None

  6. Hardening Cosmos DB Security

  7. Azure Policy support for Azure Cosmos DB

  8. Encryption at Rest (on by default) • Service managed Keys

    ◦ 1st layer of encryption • Customer managed Keys ◦ 2nd layer of encryption
  9. None

  10. Get, Wrap, Unwrap

  11. None
  12. None

  13. IP filter

  14. Minimum TLS version? And Weak ciphers

  15. None
  16. None
  17. None

  18. Network Isolation using Private link Private access to Azure PaaS

    Services
  19. None

  20. Demo

  21. Takeaways • Use Azure policies • Use customer managed keys

    feature only when required • Use Private link feature to reduce the attack surface • Contact Microsoft for TLS version • Don’t settle for the right solutions . Find new ones, and keep learning.

  22. Questions?

  23. @sajid_nazeer linkedin.com/in/musa