API Days - API Security & the Audit Paradox by Chris Swan
25
Chris Swan, CTO, @cpswan API Security
-
Upload
cohesive-networks -
Category
Technology
-
view
457 -
download
1
Transcript of API Days - API Security & the Audit Paradox by Chris Swan
© 2015
Application Delivery Controllers
Cache
TLS offload
Compression
WAF
Multiplexing
Load Balancer
ADC
Traffic Shaping
© 2015
And add more functions into containers
Firewall
VPN
Switch
Router Cache
TLS offload
WAF
Load Balancer
NIDS/NIPS
© 2015
ToDo: SecDevOps
APIs (to the network) are necessary but not sufficient: Need to have them integrated into the overall system Control metadata (and its mutability): Must be visible and understandable Security events need to be captured: Then turned into something humans can action