Defending Your Workloads Against the Next Zero-Day Vulnerability

•

3 likes•1,365 views

When serious vulnerabilities like Shellshock or Heartbleed are found, you know you should respond quickly. But when you’re juggling many priorities, and are more comfortable developing apps than security policies, emergency updates may fall to the bottom of the list. Is there a better way to protect your workloads, without a lot of work? In AWS, you approach everything in your infrastructure as an API. If you take the same approach to security, you can automate protection for zero-day vulnerabilities, without impacting agility or architecture flexibility. In this session, we’ll show you how to use AWS security groups, virtual private networks, and security capabilities like intrusion detection and prevention to defend what you put in the cloud. We will use the recent Shellshock vulnerability as a real-world threat scenario and walk you through how to combine AWS features and workload-aware security controls to prevent hackers from exploiting similar zero-day threats. Learn simple, easy to deploy security tools and techniques to protect workloads – that don't require a PhD in cyber security.

Technology

Defending your workloads against
the next zero-day vulnerability
Justin Foster
@justin_foster
Trend Micro - Director of Product Management | Cloud & Data Center Security

The Story
More at aws.trendmicro.com
2012 re:Invent
SPR203 : Cloud Security is a Shared Responsibility
http://bit.ly/2012-spr203
2013 re:Invent
SEC208: How to Meet Strict Security & Compliance Requirements in the Cloud
http://bit.ly/2013-sec208
SEC307: How Trend Micro Build their Enterprise Security Offering on AWS
http://bit.ly/2013-sec307
2014 re:Invent
SEC313: Updating Security Operations for the Cloud
http://bit.ly/2014-sec313
SEC314: Customer Perspectives on Implementing Security Controls with AWS
http://bit.ly/2014-sec314

Traditional Responsibility Model
You
Physical
Infrastructure
Network
Virtualization
Operating System
Applications
Data
Service Configuration
More at aws.amazon.com/security

Shared Responsibility Model
AWS
Physical
Infrastructure
Network
Virtualization
You
Operating System
Applications
Data
Service Configuration
More at aws.amazon.com/security

PCI DSS Level 1
SOC 1/ISAE 3402
SOC 2
SOC 3
ISO 9001
IRAP (.au)
FIPS 140-2
CJIS
CSA
FERPA
HIPAA
FedRAMP (SM)
DoD CSM 1-2, 3-5
DIACAP
ISO 27001
MTCS 3
ITAR
MPAA
G-Cloud
Section 508/VPAT
FISMA
Shared Responsibility Model
More at aws.amazon.com/compliance/

Vulnerability
©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved

bash is a common command line interpreter

a:() { b; } | attack
10 | 10 vulnerability. Widespread & easy to exploit

1989
Fantastic summary by David A. Wheeler at http://www.dwheeler.com/essays/shellshock.html#timeline

"MicroTAC" by Redrum0486 at English Wikipedia
1989

Time Since Last Event Event Action Action Timeline
1989-08-05 8:32 Added to codebase
27 days, 10:20:00 Released to public
9141 days, 21:18:35 Initial report React Clock starts
1 day, 22:19:13 More details React
2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25
5 days, 9:16:35 Limited disclosure :: CVE-2014-6271 React
2 days, 4:37:25 More details React
3:44:00 More details React
0:27:51 Public disclosure React
0:36:30 More details React

Important Shellshock Events
Time Since Last Event Event Action Action Timeline
1989-08-05 8:32 Added to codebase
27 days, 10:20:00 Released to public
9141 days, 21:18:35 Initial report React Clock starts
2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25
3:29:09 Official patch :: CVE-2014-7169 Patch 9 days, 19:17:00
3:15:00 Official patch :: CVE-2014-7186, CVE-2014-7187 Patch 4 days, 17:30:00
1 day, 11:55:00 Official patch :: CVE-2014-6277 Patch 1 day, 11:55:00
2 days, 20:24:00 Official patch :: CVE-2014-6278 Patch 2 days, 20:24:00

24h
48h
72h
Attack Source IP – CVE-2014-6271, 7169, 6277, 6278
Disclosure

24h
48h
72h
Disclosure
Attack Source IP – CVE-2014-6271, 7169, 6277, 6278

Respond
©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved
Day 1

aws.amazon.com/architecture : Web application hosting

TCP : 443TCP : 443 TCP : 4433TCP : 4433
Primary workflow for our deployment

AWS VPC Checklist
Review
IAM roles
Security groups
Network segmentation
Network access control lists (NACL)
More in the Auditing Security Checklist for Use of AWS, media.amazonwebservices.com/AWS_Auditing_Security_Checklist.pdf

HTTPSTPS
Intrusion prevention can look at each packet and then take action depending on what it finds

Review
All instances covered
Workload appropriate rules
Centrally managed
Security controls must scale out automatically with the deployment

Repair
©2015, Amazon Web Services, Inc. or its affiliates. All rights reserved
Day 2

All instances deployment from task-specific AMI
TCP : 443TCP : 443 TCP : 4433TCP : 4433

Workflow should be completely automated
Instantiate DestroyConfigure
AMI Creation Workflow
Bake Instantiate Test

Instances tend to drift from the known good state, monitoring key files & processes is important
AMI Instance
AlertIntegrity Monitoring

Keys
Respond
Review configuration
Apply intrusion prevention
Repair
Patch vulnerability in new AMI
Leverage integrity monitoring

"When serious vulnerabilities like Shellshock or Heartbleed are discovered, you know you should respond quickly. But when you’re juggling many priorities and are more comfortable developing apps than security policies, emergency updates may fall to the bottom of the list. Is there a better way to protect your workloads without a lot of work? In AWS, your entire deployment and infrastructure is code. Your security controls have to take the same approach. When your entire stack is code, you can automate protection for zero-day vulnerabilities, without impacting your architecture or adding operational burden. In this session, you’ll learn how to respond and recover from the next zero-day vulnerability. Using real-world examples, you’ll see how you can combine AWS features, such as security groups, VPCs, and IAM roles with workload-aware security controls like intrusion prevention to automate your defenses. Learn simple and easy-to-deploy security techniques that protect your workloads, but don’t require a PhD in cybersecurity. Session sponsored by Trend Micro."

Using Security to Build with Confidence in AWS - Trend Micro

Amazon Web Services

OpenStack Full Stack Monitoring and Troubleshooting

Dirk Wallerstorfer

Monitoring OpenStack? Piece of cake!

Dirk Wallerstorfer

Many companies leverage the advantages of having a private cloud running on OpenStack: fewer costs, more control, no vendor lock-in. However, they also need to take care of operations and maintenance. OpenStack monitoring and troubleshooting are nontrivial tasks and require time, knowledge, and experience. Hundreds of log files are written by numerous services with several configuration files to countless virtual and physical machines - the possibilities for errors seem endless. Manual root cause analysis is like looking for the needle in the haystack. We're going to look at common problems in OpenStack environments, analyze their root cause, and discuss options for effective and efficient operations and troubleshooting.

Mitigate Security Threats with SIEM

Akamai Developers & Admins

Spyros Garyfallos [Microsoft] | Deploy, Monitor and Manage Your High-Value AI...

InfluxData

The document discusses deploying, monitoring, and managing AI workloads at the edge using Azure IoT Edge and InfluxData. It describes how the edge addresses limitations of cloud computing like bandwidth, latency, and privacy concerns by processing data closer to where it is generated. It provides an overview of Azure IoT Edge for building and deploying edge applications and explains how InfluxDB and Telegraf can be used with IoT Edge for collecting and storing IoT sensor data and running queries and machine learning models on that data at the edge.

vSEC: bezpečnostní platforma pro privátní a veřejné cloudové služby

MarketingArrowECS_CZ

The document discusses security challenges with cloud computing and introduces Check Point's vSEC platform as an adaptive security solution. It outlines 4 steps to securely adopting the cloud: 1) controlling the cloud perimeter, 2) securing communications inside the cloud, 3) managing consistent security across hybrid environments, and 4) automating security. vSEC provides next-generation firewall capabilities, application and data security, advanced threat prevention, and integration with public cloud platforms and SDN technologies like Cisco ACI and VMware NSX to enable consistent security policies across private and public clouds.

Security at the endpoint or flying by autopilot

Owen Allen

The document discusses new security solutions for next generation IT and the evolving perimeter. Traditional perimeter security is becoming obsolete. It introduces solutions for cloud email security, web security, infrastructure as a service security, and a cloud security access broker. These solutions are part of the new perimeter architecture which aims to see more, block more, and respond faster through an integrated approach securing identity, email, endpoints, infrastructure as a service, web access, and the cloud security access broker.

Microsoft Azure News - Dec 2015

Daniel Toomey

The document announces an upcoming Brisbane Azure User Group meeting in December 2015. It lists presentations on Cortana Analytics Suite, IoT in Australia, and Service Fabric with Actors. It also provides various Azure news links on new features of the Azure portal, App Service Mobile Apps, SQL Database row-level security, AzCopy 5.0, Redis Cache premium tier, API Management, and more. Meeting sponsorship details and Channel 9 video resources are mentioned.

Velocity 2015-tim-prendergast-continuous-security-the-devops-way

Evident.io

Lacework slides from AWS Meetups

John Varghese

This document discusses Lacework's layered security approach for automating security for cloud workloads. It provides security for containers, Kubernetes, workloads, accounts, and compliance/posture assessment. Example use cases described include enforcing compliance and best practices for a semiconductor company, detecting a data breach at a collaboration company, and investigating a network attack at a networking company. Lacework aims to provide automated security that eliminates repetitive tasks, delivers accurate alerts, and provides a single pane of glass for multicloud environments.

Cisco Connect 2018 Singapore - Next generation hyperconverged infrastructure

NetworkCollaborators

The document discusses Cisco's next-generation hyperconverged infrastructure called Cisco HyperFlex. It supports any application on any cloud at any scale. HyperFlex provides a hyperconverged data platform, dynamic data fabric, and is engineered on Cisco UCS for a complete hyperconverged solution. It also discusses Cisco Intersight, a cloud-based management platform for managing infrastructure from anywhere.

Lacework Overview: Security Redefined for Cloud Scale

Lacework

The document discusses Lacework's cloud security platform. It provides continuous monitoring, compliance checks, and anomaly detection across AWS accounts, configurations, workloads and hosts. Lacework analyzes CloudTrail data and other activities to establish normal behavior baselines and detect deviations that could indicate threats. It aims to provide end-to-end visibility and security across all AWS resources and components through its Polygraph behavioral analysis technology.

Threat Detection & Remediation Workshop - Module 2

Amazon Web Services

This document outlines an agenda for a workshop on threat detection and remediation. It includes: - Running a CloudFormation template to set up the initial environment. - A presentation on threat detection and remediation that discusses why it is difficult, the importance of removing humans from data analysis and detection, and AWS security services that can help. - A walkthrough of the workshop where participants will simulate attacks and threats in their environment and use AWS security tools like GuardDuty, Lambda, and CloudWatch Events for detection and remediation.

Threat Hunting on AWS using Azure Sentinel

Ashwin Patil, GCIH, GCIA, GCFE

Security Threats, the Cloud and Your Responsibilities - Evident.io @AWS Pop-u...

Evident.io

Pied Piper Picked a Python Pipeline Pattern

Jon-Paul Sullivan

Cisco Connect 2018 Singapore - Cisco Incident Response Services

NetworkCollaborators

1) The document discusses Cisco's incident response services and the importance of detection, response, and readiness to security threats. 2) It notes that prevention is not enough, and that detection is critical with speed of discovery and containment being important. 3) Cisco offers various incident response services including retainers, exercises, assessments, and emergency response to help organizations detect threats, respond to incidents, and improve their security posture.

Reference Architecture for Data Loss Prevention in the Cloud

Netskope

Cisco Connect 2018 Singapore - Do more than keep the lights on

NetworkCollaborators

The document discusses Cisco's new Business Critical Services and High-Value Services offerings which are designed to help customers optimize their networks and operations. Business Critical Services applies analytics, automation, and expertise to predict opportunities, prevent risks, and help with technology transitions. High-Value Services builds on Cisco's product support to provide solutions support, technical advantage services, and software support with benefits like fewer outages, faster resolution times, and increased uptime. Early customers are seeing outcomes such as 56% increased Wi-Fi availability and 30,000 hours of automation savings.

Cisco Connect 2018 Singapore - Secure data center building a secure zero trus...

NetworkCollaborators

The document discusses Cisco's Tetration analytics platform for building a secure data center. Tetration provides visibility into application dependencies and network traffic, workload protection through microsegmentation and policy enforcement, and forensic capabilities for investigating security incidents. It captures metadata from all network traffic using sensors and analyzes the data with machine learning to provide insights into applications, detect anomalies, and automatically generate microsegmentation policies for increased security.

AWS Security Strategy

Teri Radichel

This document discusses AWS security best practices for enterprises. It recommends following AWS security policies and IAM best practices, automating security configurations through tools like CloudFormation, and architecting networks carefully with security groups and subnets. Automating security operations, compliance checks, and incident response is emphasized to manage risks and unknown threats. The document also warns against simply migrating on-premises systems to AWS without redesigning for the cloud.

Guidebook Case Study

Lacework

IoT: Detect abnormal device behavior and disconnect devices automatically

AWS Germany

Monitoring and Logging: Expecting the Unexpected

AlonZilbershtein1

The document discusses Chegg's approach to monitoring and logging applications. It describes three main strategies: using crash reports and local logging to understand and fix issues; implementing analytics and logging to track key metrics and events; and setting up monitoring and alerts to be notified of problems. The goal is to effectively manage applications by anticipating problems, learning from failures, and responding quickly through an integrated monitoring strategy.

Cisco Connect 2018 Singapore - Transforming Enterprises in a Multi-Cloud World

NetworkCollaborators

The document discusses Cisco's vision and portfolio for securing enterprises in a multi-cloud world. It highlights Cisco's approach to security across networks, endpoints, cloud services and threat intelligence. Specific solutions mentioned include Cisco Umbrella, Cloudlock, AMP for Endpoints and Tetration. The document also discusses Cisco's intent-based networking strategy and portfolio for reinventing networks, as well as solutions to unlock the power of data and improve the human experience.

Deep Blue General Presentation

guesta0ecf6

Deep Blue is a repository provided by the University of Michigan that provides authors with the following benefits: 1) Articles deposited in Deep Blue are cited more often than articles not in such repositories, receiving 25-250% more citations. 2) Works deposited in Deep Blue will be preserved and secured for the long term in formats that are non-proprietary with open standards or will be preserved in other formats. 3) Depositing works in Deep Blue is a simple process that allows authors to maintain ownership and distribution rights while enabling the university to preserve and distribute the works.

Simone Aliprandi, Open source, open content, open data nell'ordinamento itali...Andrea Rossetti

What's hot

A Practical Guide to Migrating Legacy Applications

Cloudsoft

New security solutions for next generation of IT

DATA SECURITY SOLUTIONS

Microsoft Azure News - Dec 2015

Daniel Toomey

Velocity 2015-tim-prendergast-continuous-security-the-devops-way

Evident.io

Lacework slides from AWS Meetups

John Varghese

Cisco Connect 2018 Singapore - Next generation hyperconverged infrastructure

NetworkCollaborators

Lacework Overview: Security Redefined for Cloud Scale

Lacework

Threat Detection & Remediation Workshop - Module 2

Amazon Web Services

Threat Hunting on AWS using Azure Sentinel

Ashwin Patil, GCIH, GCIA, GCFE

Security Threats, the Cloud and Your Responsibilities - Evident.io @AWS Pop-u...

Evident.io

Pied Piper Picked a Python Pipeline Pattern

Jon-Paul Sullivan

Cisco Connect 2018 Singapore - Cisco Incident Response Services

NetworkCollaborators

Reference Architecture for Data Loss Prevention in the Cloud

Netskope

Cisco Connect 2018 Singapore - Do more than keep the lights on

NetworkCollaborators

Cisco Connect 2018 Singapore - Secure data center building a secure zero trus...

NetworkCollaborators

AWS Security Strategy

Teri Radichel

Guidebook Case Study

Lacework

IoT: Detect abnormal device behavior and disconnect devices automatically

AWS Germany

Monitoring and Logging: Expecting the Unexpected

AlonZilbershtein1

Cisco Connect 2018 Singapore - Transforming Enterprises in a Multi-Cloud World

NetworkCollaborators

What's hot (20)

A Practical Guide to Migrating Legacy Applications

New security solutions for next generation of IT

Microsoft Azure News - Dec 2015

Velocity 2015-tim-prendergast-continuous-security-the-devops-way

Lacework slides from AWS Meetups

Cisco Connect 2018 Singapore - Next generation hyperconverged infrastructure

Lacework Overview: Security Redefined for Cloud Scale

Threat Detection & Remediation Workshop - Module 2

Threat Hunting on AWS using Azure Sentinel

Security Threats, the Cloud and Your Responsibilities - Evident.io @AWS Pop-u...

Pied Piper Picked a Python Pipeline Pattern

Cisco Connect 2018 Singapore - Cisco Incident Response Services

Reference Architecture for Data Loss Prevention in the Cloud

Cisco Connect 2018 Singapore - Do more than keep the lights on

Cisco Connect 2018 Singapore - Secure data center building a secure zero trus...

AWS Security Strategy

Guidebook Case Study

IoT: Detect abnormal device behavior and disconnect devices automatically

Monitoring and Logging: Expecting the Unexpected

Cisco Connect 2018 Singapore - Transforming Enterprises in a Multi-Cloud World

Viewers also liked

Deep Blue General Presentation

guesta0ecf6

Simone Aliprandi, Open source, open content, open data nell'ordinamento itali...Andrea Rossetti

Composite WPF

Martha Rotter

The document discusses Composite Smart Clients, which provide an extensible architecture for building complex WPF applications in a modular way. It describes PRISM, an open source framework that implements a composite application library and guidance for building WPF applications using modules. It covers topics like the architecture, bootstrapping, dependency injection, regions, views and presentation models, communication between modules, and shell extensibility.

Giuseppe vaciago, Digital forensics e garanzie dell’indagato 2011 04 05Andrea Rossetti

Podcasting Inside the Evil Empire

Martha Rotter

Microsoft recently created an internal, corporate initiative called “Podcast in a Box.” The idea was to get employees in the habit of using equipment to podcast internally (i.e., to other employees only), create content and educate each other. Martha is going to talk about this unique program, how it has been successful, and how other organisations can adopt a similar program to educate and inform (and sometimes even entertain) their employees.

María josé martín rios

diparojas

Translating Drupal

guest3a6661

This document discusses improvements to the translation process in Drupal 6. Key points include: - Drupal 6 introduced automation that imports translations for enabled modules during installation. - A new packaging format with smaller translation files in a defined structure replaced the previous format. - On-page translation became possible in Drupal 6 with the l10n_client module. - Plans were discussed for a localization server and community that would simplify and automate the translation process by parsing code and managing translations through a shared interface.

Social Innovation For Resource Management

jexxon

The document discusses the HABITATS project which aims to validate INSPIRE data structures related to habitats through a social, bottom-up approach. It involves building user communities, developing data models, designing a spatial data infrastructure service architecture, and implementing pilot projects to test the services. The pilots will focus on managing natural resources and economic activities through participatory co-design processes to help drive adoption of standards from the bottom-up. The expected results include multi-stakeholder communities, data models, network services, operational pilot services, and dissemination of lessons learned.

From Cowboy To Astronaut: Lessons From The Trail, New Worlds On The Horizon

Jeremy Fuksa

Morir Por La Piel

catilii

I Truth #4 - IServicebdpayne

Partecipazione alle reti europei

jexxon

Wordpress Ecosystems

Justin Kistner

Haikuls

Jeff12982

Haiku is a web-based learning system that allows teachers to create class websites for posting content like pages, files, links, audio, and video. It offers features like announcements, calendars, dropboxes for submitting homework, and communication tools for teachers, students, and parents. While basic features are free, additional features like larger file storage and multiple classes require an upgrade with paid subscription plans.

2015-06 Roberto Boselli, Dal dato non strutturato alle ontologie

Andrea Rossetti

Realtor Jeff Kahn of Century 21 Hansen Realty

redwood7339

Student Using Class Chatter

ksearstis

This document provides quick directions for students to use the Class Chatter website. Students should go to www.classchatter.com, log in using their class name and password, read the home page directions, select their name from the dropdown and log in with their student number. They can then start working by clicking on "Problem Solver 1" under "Topical Blogs" and reading the topic before adding their own post.

Adv 410 Quiz 2toenail23

『予想どおりに不合理』４章「社会規範のコスト」

Hikaru GOTO

$Migrer vers PMB: retour d\'expérience d\'une migration depuis Socrate$ $Migrer vers PMB: retour d\'expérience d\'une migration depuis Socrate$

Migrer vers PMB: retour d\'expérience d\'une migration depuis Socrate

PMB-BUG

Viewers also liked (20)

Deep Blue General Presentation

Simone Aliprandi, Open source, open content, open data nell'ordinamento itali...

Composite WPF

Giuseppe vaciago, Digital forensics e garanzie dell’indagato 2011 04 05

Podcasting Inside the Evil Empire

María josé martín rios

Translating Drupal

Social Innovation For Resource Management

From Cowboy To Astronaut: Lessons From The Trail, New Worlds On The Horizon

Morir Por La Piel

I Truth #4 - IService

Partecipazione alle reti europei

Wordpress Ecosystems

Haikuls

2015-06 Roberto Boselli, Dal dato non strutturato alle ontologie

Realtor Jeff Kahn of Century 21 Hansen Realty

Student Using Class Chatter

Adv 410 Quiz 2

『予想どおりに不合理』４章「社会規範のコスト」

$Migrer vers PMB: retour d\'expérience d\'une migration depuis Socrate$ $Migrer vers PMB: retour d\'expérience d\'une migration depuis Socrate$

Migrer vers PMB: retour d\'expérience d\'une migration depuis Socrate

Similar to Defending Your Workloads Against the Next Zero-Day Vulnerability

Using Security to Build with Confidence in AWS

Amazon Web Services

This document discusses building applications securely on AWS. It outlines the shared responsibility model between AWS and customers, with AWS responsible for security of the cloud infrastructure and customers responsible for their applications and data. It describes the Shellshock vulnerability timeline and impact. It provides recommendations for reviewing VPC configuration, network access controls, and security groups. It also recommends automating deployment from known good AMIs, applying intrusion prevention, and using integrity monitoring to maintain the known good state.

Using Security To Build With Confidence in AWS – Justin Foster, Director of P...

Amazon Web Services

In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximise the security of your deployment while minimising the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

Using Security To Build  With Confidence In AWS - Trend Micro

Amazon Web Services

You don’t need to be a security expert to protect your organisations data in the cloud. You don’t need to be a security expert to protect your workloads on AWS. You just need to be informed of the many security tools available in AWS, and learn how to use them. Taking a highly automated approach to security, you can use key features of the AWS Cloud to transform security in your organisation. As with infrastructure as an API, security as an API allows you to move rapidly & stay secure. From AWS security groups, to virtual private networks, to security tools, you need to learn how to automate and accelerate. In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximise the security of your deployment while minimising the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

Using Security To Build With Confidence - Session Sponsored by Trend Micro

Amazon Web Services

Using Security To Build With Confidence You don’t need to be a security expert to protect your organisations data in the cloud. You don’t need to be a security expert to protect your workloads on AWS. You just need to be informed of the many security tools available in AWS, and learn how to use them. Taking a highly automated approach to security, you can use key features of the AWS Cloud to transform security in your organisation. As with infrastructure as an API, security as an API allows you to move rapidly & stay secure. From AWS security groups, to virtual private networks, to security tools, you need to learn how to automate and accelerate. In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximise the security of your deployment while minimising the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

Using Security to Build with Confidence in AWS - Trend Micro

Amazon Web Services

Head in the Clouds? Let’s get serious about how to benefit from Cloud platfor...

Digital Transformation EXPO Event Series

Richard will look at the reasoning behind the current move towards Cloud-based resource usage and identify the many areas of risk that must be considered when a migration project is being planned. He will look closely at emerging threats and explain how these can be confronted using the appropriate Cloud security strategy and solutions. He will also look at the various different models of Cloud and define methodologies to assist any organisation to be compliant with current and future legislation that governs data usage and protection.

Simplify security with Trend Micro Managed Rules for AWS WAF

Amazon Web Services

OWASP AppSecEu 2016 Rome - Building secure cloud native apps

Andreas Falk

The document discusses building secure cloud-native applications with Spring Boot and Spring Security. It introduces Spring Security which provides "secure by default" configurations and password encoding. It also discusses secure microservice architectures using OAuth2 for authentication and authorization between services. Runtime application self-protection with AppSensor is presented as another method for securing cloud applications.

Realise True Business Value .pdf

ThousandEyes

This document provides an overview of ThousandEyes monitoring capabilities for SaaS environments. It discusses how modern application architectures and cloud adoption are creating challenges for visibility. ThousandEyes removes blind spots across the digital supply chain. The document demonstrates differences in delivery for Microsoft 365 applications like Outlook and SharePoint. It also provides an example of how ThousandEyes helped a Microsoft partner improve customer satisfaction. Finally, it shares data on the business benefits ThousandEyes can provide and calls partners to action.

"It's Just A Meeting"

Cisco Canada

TrendMicro - Security Designed for the Software-Defined Data Center

VMUG IT

This document discusses security solutions designed for the software-defined data center. It notes that traditional physical server security approaches no longer work in virtualized environments. A new software-defined approach is needed to automatically provision security as virtual machines are deployed, manage security efficiently as environments scale, and optimize data center resources. Trend Micro's Deep Security product is presented as a solution that provides workload-aware security across physical, virtual, private and public cloud environments through a single management console.

Cisco at v mworld 2015 cisco powered_vmworld 2015

ldangelo0772

The document discusses Cisco Powered and the Intercloud. Cisco Powered is Cisco's methodology for delivering enterprise-class cloud and managed services through validated partners. It focuses on security, choice of consumption models, and independently validated services. The Intercloud is the globally connected network of clouds that will connect private, public, and third-party clouds through strategic technology, services, and partners. The Intercloud aims to optimize organizations for the connected world through the Cisco Powered portfolio of cloud and managed services.

Csa Summit 2017 - Un viaje seguro hacia la nube

CSA Argentina

This document discusses securing workloads in the cloud. It recommends a 4 step approach: 1) control the cloud perimeter with advanced threat prevention, 2) securely segment workloads inside the cloud, 3) manage consistent security policies across hybrid environments, and 4) automate security to match the dynamic nature of the cloud. The document promotes Check Point's vSEC product family for providing adaptive security that learns and scales with applications in private and public clouds.

SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)

Cisco Canada

Many organizations anticipate significant growth in WAN bandwidth and Public Cloud usage. Leveraging the Internet to provide extra WAN bandwidth and to offload Public Cloud traffic is compelling, however network reliability, application performance and security are the primary roadblocks. Cisco IWAN transport solution is the most full featured architecture to support the Software Defined Wide Area Network (SD-WAN) requirements that are emerging in standards bodies like the Open Networking User Group (ONUG) to address these issues. Many enterprises are looking for the benefits these technologies deliver, but without the costs associated with owning and operating those technologies. Here is where VMS for IWAN meets market need. Cisco VMS is a full featured management platform for both virtual and physical devices. This session will cover a full description of the VMS platform and how it can be used to deliver exceptional customer experience when supporting a managed offering of IWAN. The roles of Customer and Resource Facing Services will be covered, along with integration between the IWAN service and SP operations. This session will also cover the topic of how Virtual Network Functions (VNFs) can be placed optimally in the network from the CPE to SP datacenter, along with a demo of the end user and operator experience.

Internet of everything #IoE

Matteo Masi

Realize True Business Value With ThousandEyes

ThousandEyes

OPS Executive insights Webinar - Tanzu Slides

VMware Tanzu

Realise True Business Value With ThousandEyes

ThousandEyes

The document discusses monitoring for SaaS environments. It notes that as more enterprises adopt cloud-based applications and remote work, the traditional methods of monitoring are no longer effective. With SaaS becoming the main application stack and the internet becoming the primary network, enterprises are struggling to understand user experience and observe assets that they no longer control directly. The document examines different SaaS delivery architectures and how applications like Microsoft 365 apps are delivered differently. It provides an example of how ThousandEyes helped a Microsoft partner by providing visibility into user journeys and reducing troubleshooting times for customer issues.

BitSensor Webwinkel Vakdagen

webwinkelvakdag

The document discusses securing DevOps processes for quick application release cycles while complying with GDPR. It notes that security can slow down agile development if not implemented properly. It proposes embedding security directly into applications using techniques like code inspection to detect vulnerabilities during development. This would allow continuous deployment while maintaining security, avoiding delays from traditional security testing during each release cycle.

Mobile Security - 2015 Wrap-up and 2016 Predictions

Skycure

If you still think Mobile Security is a thing of the future--think again. Millions of mobile devices worldwide were exposed in 2015 to vulnerabilities and advanced cyber-attacks including: No iOS Zone, XcodeGhost, Stagefright and SwiftKey to name just a few. Given 2015’s ultra-active cyber-risk front, we are sure 2016 has much more in store. In this webinar, Yair Amit, CTO and Co-founder at Skycure, wraps-up the state of mobile security in 2015 and shares his predictions for 2016.

Similar to Defending Your Workloads Against the Next Zero-Day Vulnerability (20)

Using Security to Build with Confidence in AWS

Using Security To Build With Confidence in AWS – Justin Foster, Director of P...

Using Security To Build  With Confidence In AWS - Trend Micro

Using Security To Build With Confidence - Session Sponsored by Trend Micro

Using Security to Build with Confidence in AWS - Trend Micro

Head in the Clouds? Let’s get serious about how to benefit from Cloud platfor...

Simplify security with Trend Micro Managed Rules for AWS WAF

OWASP AppSecEu 2016 Rome - Building secure cloud native apps

Realise True Business Value .pdf

"It's Just A Meeting"

TrendMicro - Security Designed for the Software-Defined Data Center

Cisco at v mworld 2015 cisco powered_vmworld 2015

Csa Summit 2017 - Un viaje seguro hacia la nube

SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)

Internet of everything #IoE

Realize True Business Value With ThousandEyes

OPS Executive insights Webinar - Tanzu Slides

Realise True Business Value With ThousandEyes

BitSensor Webwinkel Vakdagen

Mobile Security - 2015 Wrap-up and 2016 Predictions

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Amazon Web Services

Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS. In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Amazon Web Services

La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup. Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti. Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.

Esegui pod serverless con Amazon EKS e AWS Fargate

Amazon Web Services

Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi

Costruire Applicazioni Moderne con AWS

Amazon Web Services

Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.

Come spendere fino al 90% in meno con i container e le istanze spot

Amazon Web Services

L’utilizzo dei container è in continua crescita. Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili. I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!

Open banking as a service

Amazon Web Services

In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th. Event Agenda : Open banking so far (short recap) • PSD2, OB UK, OB Australia, OB LATAM, OB Israel Intro to Open Finance marketplace • Scope • Features • Tech overview and Demo The role of the Cloud The Future of APIs • Complying with regulation • Monetizing data / APIs • Business models • Time to market One platform for all: a Strategic approach Q&A

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Amazon Web Services

Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc. AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta. Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

Amazon Web Services

Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity. AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet. Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Amazon Web Services

Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.

Computer Vision con AWS

Amazon Web Services

Database Oracle e VMware Cloud on AWS i miti da sfatare

Amazon Web Services

Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti. Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi. La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Amazon Web Services

Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti. Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire. Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito. In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.

API moderne real-time per applicazioni mobili e web

Amazon Web Services

Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline. Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Amazon Web Services

Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi. La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali. In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.

Tools for building your MVP on AWS

Amazon Web Services

1) The document discusses building a minimum viable product (MVP) using Amazon Web Services (AWS). 2) It provides an example of an MVP for an omni-channel messenger platform that was built from 2017 to connect ecommerce stores to customers via web chat, Facebook Messenger, WhatsApp, and other channels. 3) The founder discusses how they started with an MVP in 2017 with 200 ecommerce stores in Hong Kong and Taiwan, and have since expanded to over 5000 clients across Southeast Asia using AWS for scaling.

How to Build a Winning Pitch Deck

Amazon Web Services

This document discusses pitch decks and fundraising materials. It explains that venture capitalists will typically spend only 3 minutes and 44 seconds reviewing a pitch deck. Therefore, the deck needs to tell a compelling story to grab their attention. It also provides tips on tailoring different types of decks for different purposes, such as creating a concise 1-2 page teaser, a presentation deck for pitching in-person, and a more detailed read-only or fundraising deck. The document stresses the importance of including key information like the problem, solution, product, traction, market size, plans, team, and ask.

Building a web application without servers

Amazon Web Services

This document discusses building serverless web applications using AWS services like API Gateway, Lambda, DynamoDB, S3 and Amplify. It provides an overview of each service and how they can work together to create a scalable, secure and cost-effective serverless application stack without having to manage servers or infrastructure. Key services covered include API Gateway for hosting APIs, Lambda for backend logic, DynamoDB for database needs, S3 for static content, and Amplify for frontend hosting and continuous deployment.

Fundraising Essentials

Amazon Web Services

This document provides tips for fundraising from startup founders Roland Yau and Sze Lok Chan. It discusses generating competition to create urgency for investors, fundraising in parallel rather than sequentially, having a clear fundraising narrative focused on what you do and why it's compelling, and prioritizing relationships with people over firms. It also notes how the pandemic has changed fundraising, with examples of deals done virtually during this time. The tips emphasize being fully prepared before fundraising and cultivating connections with investors in advance.

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

Amazon Web Services

This document discusses Amazon's machine learning services for building conversational interfaces and extracting insights from unstructured text and audio. It describes Amazon Lex for creating chatbots, Amazon Comprehend for natural language processing tasks like entity extraction and sentiment analysis, and how they can be used together for applications like intelligent call centers and content analysis. Pre-trained APIs simplify adding machine learning to apps without requiring ML expertise.

Introduzione a Amazon Elastic Container Service

Amazon Web Services

Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Esegui pod serverless con Amazon EKS e AWS Fargate

Costruire Applicazioni Moderne con AWS

Come spendere fino al 90% in meno con i container e le istanze spot

Open banking as a service

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Computer Vision con AWS

Database Oracle e VMware Cloud on AWS i miti da sfatare

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

API moderne real-time per applicazioni mobili e web

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Tools for building your MVP on AWS

How to Build a Winning Pitch Deck

Building a web application without servers

Fundraising Essentials

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

Introduzione a Amazon Elastic Container Service

Recently uploaded

Monitoring and Managing Anomaly Detection on OpenShift.pdf

Tosin Akinosho

Monitoring and Managing Anomaly Detection on OpenShift Overview Dive into the world of anomaly detection on edge devices with our comprehensive hands-on tutorial. This SlideShare presentation will guide you through the entire process, from data collection and model training to edge deployment and real-time monitoring. Perfect for those looking to implement robust anomaly detection systems on resource-constrained IoT/edge devices. Key Topics Covered 1. Introduction to Anomaly Detection - Understand the fundamentals of anomaly detection and its importance in identifying unusual behavior or failures in systems. 2. Understanding Edge (IoT) - Learn about edge computing and IoT, and how they enable real-time data processing and decision-making at the source. 3. What is ArgoCD? - Discover ArgoCD, a declarative, GitOps continuous delivery tool for Kubernetes, and its role in deploying applications on edge devices. 4. Deployment Using ArgoCD for Edge Devices - Step-by-step guide on deploying anomaly detection models on edge devices using ArgoCD. 5. Introduction to Apache Kafka and S3 - Explore Apache Kafka for real-time data streaming and Amazon S3 for scalable storage solutions. 6. Viewing Kafka Messages in the Data Lake - Learn how to view and analyze Kafka messages stored in a data lake for better insights. 7. What is Prometheus? - Get to know Prometheus, an open-source monitoring and alerting toolkit, and its application in monitoring edge devices. 8. Monitoring Application Metrics with Prometheus - Detailed instructions on setting up Prometheus to monitor the performance and health of your anomaly detection system. 9. What is Camel K? - Introduction to Camel K, a lightweight integration framework built on Apache Camel, designed for Kubernetes. 10. Configuring Camel K Integrations for Data Pipelines - Learn how to configure Camel K for seamless data pipeline integrations in your anomaly detection workflow. 11. What is a Jupyter Notebook? - Overview of Jupyter Notebooks, an open-source web application for creating and sharing documents with live code, equations, visualizations, and narrative text. 12. Jupyter Notebooks with Code Examples - Hands-on examples and code snippets in Jupyter Notebooks to help you implement and test anomaly detection models.

Driving Business Innovation: Latest Generative AI Advancements & Success Story

Safe Software

Are you ready to revolutionize how you handle data? Join us for a webinar where we’ll bring you up to speed with the latest advancements in Generative AI technology and discover how leveraging FME with tools from giants like Google Gemini, Amazon, and Microsoft OpenAI can supercharge your workflow efficiency. During the hour, we’ll take you through: Guest Speaker Segment with Hannah Barrington: Dive into the world of dynamic real estate marketing with Hannah, the Marketing Manager at Workspace Group. Hear firsthand how their team generates engaging descriptions for thousands of office units by integrating diverse data sources—from PDF floorplans to web pages—using FME transformers, like OpenAIVisionConnector and AnthropicVisionConnector. This use case will show you how GenAI can streamline content creation for marketing across the board. Ollama Use Case: Learn how Scenario Specialist Dmitri Bagh has utilized Ollama within FME to input data, create custom models, and enhance security protocols. This segment will include demos to illustrate the full capabilities of FME in AI-driven processes. Custom AI Models: Discover how to leverage FME to build personalized AI models using your data. Whether it’s populating a model with local data for added security or integrating public AI tools, find out how FME facilitates a versatile and secure approach to AI. We’ll wrap up with a live Q&A session where you can engage with our experts on your specific use cases, and learn more about optimizing your data workflows with AI. This webinar is ideal for professionals seeking to harness the power of AI within their data management systems while ensuring high levels of customization and security. Whether you're a novice or an expert, gain actionable insights and strategies to elevate your data processes. Join us to see how FME and AI can revolutionize how you work with data!

Nordic Marketo Engage User Group_June 13_ 2024.pptx

MichaelKnudsen27

Your One-Stop Shop for Python Success: Top 10 US Python Development Providers

akankshawande

How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf

Chart Kalyan

Introduction of Cybersecurity with OSS at Code Europe 2024

Hiroshi SHIBATA

I develop the Ruby programming language, RubyGems, and Bundler, which are package managers for Ruby. Today, I will introduce how to enhance the security of your application using open-source software (OSS) examples from Ruby and RubyGems. The first topic is CVE (Common Vulnerabilities and Exposures). I have published CVEs many times. But what exactly is a CVE? I'll provide a basic understanding of CVEs and explain how to detect and handle vulnerabilities in OSS. Next, let's discuss package managers. Package managers play a critical role in the OSS ecosystem. I'll explain how to manage library dependencies in your application. I'll share insights into how the Ruby and RubyGems core team works to keep our ecosystem safe. By the end of this talk, you'll have a better understanding of how to safeguard your code.

Main news related to the CCS TSI 2023 (2023/1695)

Jakub Marek

An English 🇬🇧 translation of a presentation to the speech I gave about the main changes brought by CCS TSI 2023 at the biggest Czech conference on Communications and signalling systems on Railways, which was held in Clarion Hotel Olomouc from 7th to 9th November 2023 (konferenceszt.cz). Attended by around 500 participants and 200 on-line followers. The original Czech 🇨🇿 version of the presentation can be found here: https://www.slideshare.net/slideshow/hlavni-novinky-souvisejici-s-ccs-tsi-2023-2023-1695/269688092 . The videorecording (in Czech) from the presentation is available here: https://youtu.be/WzjJWm4IyPk?si=SImb06tuXGb30BEH .

zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...

Alex Pruden

Folding is a recent technique for building efficient recursive SNARKs. Several elegant folding protocols have been proposed, such as Nova, Supernova, Hypernova, Protostar, and others. However, all of them rely on an additively homomorphic commitment scheme based on discrete log, and are therefore not post-quantum secure. In this work we present LatticeFold, the first lattice-based folding protocol based on the Module SIS problem. This folding protocol naturally leads to an efficient recursive lattice-based SNARK and an efficient PCD scheme. LatticeFold supports folding low-degree relations, such as R1CS, as well as high-degree relations, such as CCS. The key challenge is to construct a secure folding protocol that works with the Ajtai commitment scheme. The difficulty, is ensuring that extracted witnesses are low norm through many rounds of folding. We present a novel technique using the sumcheck protocol to ensure that extracted witnesses are always low norm no matter how many rounds of folding are used. Our evaluation of the final proof system suggests that it is as performant as Hypernova, while providing post-quantum security. Paper Link: https://eprint.iacr.org/2024/257

Freshworks Rethinks NoSQL for Rapid Scaling & Cost-Efficiency

ScyllaDB

Building Production Ready Search Pipelines with Spark and Milvus

Zilliz

GraphRAG for Life Science to increase LLM accuracy

Tomaz Bratanic

TrustArc Webinar - 2024 Global Privacy Survey

TrustArc

How does your privacy program stack up against your peers? What challenges are privacy teams tackling and prioritizing in 2024? In the fifth annual Global Privacy Benchmarks Survey, we asked over 1,800 global privacy professionals and business executives to share their perspectives on the current state of privacy inside and outside of their organizations. This year’s report focused on emerging areas of importance for privacy and compliance professionals, including considerations and implications of Artificial Intelligence (AI) technologies, building brand trust, and different approaches for achieving higher privacy competence scores. See how organizational priorities and strategic approaches to data security and privacy are evolving around the globe. This webinar will review: - The top 10 privacy insights from the fifth annual Global Privacy Benchmarks Survey - The top challenges for privacy leaders, practitioners, and organizations in 2024 - Key themes to consider in developing and maintaining your privacy program

Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...

Tatiana Kojar

Skybuffer AI, built on the robust SAP Business Technology Platform (SAP BTP), is the latest and most advanced version of our AI development, reaffirming our commitment to delivering top-tier AI solutions. Skybuffer AI harnesses all the innovative capabilities of the SAP BTP in the AI domain, from Conversational AI to cutting-edge Generative AI and Retrieval-Augmented Generation (RAG). It also helps SAP customers safeguard their investments into SAP Conversational AI and ensure a seamless, one-click transition to SAP Business AI. With Skybuffer AI, various AI models can be integrated into a single communication channel such as Microsoft Teams. This integration empowers business users with insights drawn from SAP backend systems, enterprise documents, and the expansive knowledge of Generative AI. And the best part of it is that it is all managed through our intuitive no-code Action Server interface, requiring no extensive coding knowledge and making the advanced AI accessible to more users.

Best 20 SEO Techniques To Improve Website Visibility In SERP

Pixlogix Infotech

Astute Business Solutions | Oracle Cloud Partner |

AstuteBusiness

leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...

alexjohnson7307

HCL Notes and Domino License Cost Reduction in the World of DLAU

panagenda

Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/ The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this! We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model. Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward. These topics will be covered - Reducing license cost by finding and fixing misconfigurations and superfluous accounts - How do CCB and CCX licenses really work? - Understanding the DLAU tool and how to best utilize it - Tips for common problem areas, like team mailboxes, functional/test users, etc - Practical examples and best practices to implement right away

Presentation of the OECD Artificial Intelligence Review of Germany

innovationoecd

FREE A4 Cyber Security Awareness Posters-Social Engineering part 3

Data Hops

Fueling AI with Great Data with Airbyte Webinar

Zilliz

Recently uploaded (20)

Monitoring and Managing Anomaly Detection on OpenShift.pdf

Driving Business Innovation: Latest Generative AI Advancements & Success Story

Nordic Marketo Engage User Group_June 13_ 2024.pptx

Your One-Stop Shop for Python Success: Top 10 US Python Development Providers

How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf

Introduction of Cybersecurity with OSS at Code Europe 2024

Main news related to the CCS TSI 2023 (2023/1695)

zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...

Freshworks Rethinks NoSQL for Rapid Scaling & Cost-Efficiency

Building Production Ready Search Pipelines with Spark and Milvus

GraphRAG for Life Science to increase LLM accuracy

TrustArc Webinar - 2024 Global Privacy Survey

Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...

Best 20 SEO Techniques To Improve Website Visibility In SERP

Astute Business Solutions | Oracle Cloud Partner |

leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...

HCL Notes and Domino License Cost Reduction in the World of DLAU

Presentation of the OECD Artificial Intelligence Review of Germany

FREE A4 Cyber Security Awareness Posters-Social Engineering part 3

Fueling AI with Great Data with Airbyte Webinar

Defending Your Workloads Against the Next Zero-Day Vulnerability

1. Defending your workloads against the next zero-day vulnerability Justin Foster @justin_foster Trend Micro - Director of Product Management | Cloud & Data Center Security

2. The Story More at aws.trendmicro.com 2012 re:Invent SPR203 : Cloud Security is a Shared Responsibility http://bit.ly/2012-spr203 2013 re:Invent SEC208: How to Meet Strict Security & Compliance Requirements in the Cloud http://bit.ly/2013-sec208 SEC307: How Trend Micro Build their Enterprise Security Offering on AWS http://bit.ly/2013-sec307 2014 re:Invent SEC313: Updating Security Operations for the Cloud http://bit.ly/2014-sec313 SEC314: Customer Perspectives on Implementing Security Controls with AWS http://bit.ly/2014-sec314

3. Traditional Responsibility Model You Physical Infrastructure Network Virtualization Operating System Applications Data Service Configuration More at aws.amazon.com/security

4. Shared Responsibility Model AWS Physical Infrastructure Network Virtualization You Operating System Applications Data Service Configuration More at aws.amazon.com/security

5. Shared Responsibility Model AWS Physical Infrastructure Network Virtualization You Operating System Applications Data Service Configuration More at aws.amazon.com/security

6. PCI DSS Level 1 SOC 1/ISAE 3402 SOC 2 SOC 3 ISO 9001 IRAP (.au) FIPS 140-2 CJIS CSA FERPA HIPAA FedRAMP (SM) DoD CSM 1-2, 3-5 DIACAP ISO 27001 MTCS 3 ITAR MPAA G-Cloud Section 508/VPAT FISMA Shared Responsibility Model More at aws.amazon.com/compliance/

7. Shared Responsibility Model AWS Physical Infrastructure Network Virtualization You Operating System Applications Data Service Configuration More at aws.amazon.com/security

8. Vulnerability Respond Repair

10. by Andreas Lindh (@addelindh)

11. bash is a common command line interpreter

12. a:() { b; } | attack 10 | 10 vulnerability. Widespread & easy to exploit

13.

14. 1989 Fantastic summary by David A. Wheeler at http://www.dwheeler.com/essays/shellshock.html#timeline

15. 1989 By Norlando Pobre

16. By Gavin Stewart 1989

17. By VersusLiveQuizShow 1989

18. "MicroTAC" by Redrum0486 at English Wikipedia 1989

19. Time Since Last Event Event Action Action Timeline 1989-08-05 8:32 Added to codebase 27 days, 10:20:00 Released to public 9141 days, 21:18:35 Initial report React Clock starts 1 day, 22:19:13 More details React 2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25 5 days, 9:16:35 Limited disclosure :: CVE-2014-6271 React 2 days, 4:37:25 More details React 3:44:00 More details React 0:27:51 Public disclosure React 0:36:30 More details React

20. Important Shellshock Events Time Since Last Event Event Action Action Timeline 1989-08-05 8:32 Added to codebase 27 days, 10:20:00 Released to public 9141 days, 21:18:35 Initial report React Clock starts 2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25 3:29:09 Official patch :: CVE-2014-7169 Patch 9 days, 19:17:00 3:15:00 Official patch :: CVE-2014-7186, CVE-2014-7187 Patch 4 days, 17:30:00 1 day, 11:55:00 Official patch :: CVE-2014-6277 Patch 1 day, 11:55:00 2 days, 20:24:00 Official patch :: CVE-2014-6278 Patch 2 days, 20:24:00

21. 24h 48h 72h Attack Source IP – CVE-2014-6271, 7169, 6277, 6278 Disclosure

22. 24h 48h 72h Attack Source IP – CVE-2014-6271, 7169, 6277, 6278 Disclosure

23. 24h 48h 72h Disclosure Attack Source IP – CVE-2014-6271, 7169, 6277, 6278

25. aws.amazon.com/architecture : Web application hosting

26. aws.amazon.com/architecture : Web application hosting

27. TCP : 443TCP : 443 TCP : 4433TCP : 4433 Primary workflow for our deployment

28. IAM Roles

29. AWS IaM Review

30. Security groups

31. AWS Security Group Review

32. Network segmentation

33. AWS Network Review

34. AWS VPC Checklist Review IAM roles Security groups Network segmentation Network access control lists (NACL) More in the Auditing Security Checklist for Use of AWS, media.amazonwebservices.com/AWS_Auditing_Security_Checklist.pdf

35. TCP : 443TCP : 443 TCP : 4433TCP : 4433 Primary workflow for our deployment

36. HTTPSTPS Intrusion prevention can look at each packet and then take action depending on what it finds

37. aws.amazon.com/architecture : Web application hosting

38. Intrusion Prevention in Action

39. Review All instances covered Workload appropriate rules Centrally managed Security controls must scale out automatically with the deployment

41. aws.amazon.com/architecture : Web application hosting

42. All instances deployment from task-specific AMI TCP : 443TCP : 443 TCP : 4433TCP : 4433

43. Workflow should be completely automated Instantiate DestroyConfigure AMI Creation Workflow Bake Instantiate Test

44. AMI Creation

45. aws.amazon.com/architecture : Web application hosting

46. Instances tend to drift from the known good state, monitoring key files & processes is important AMI Instance AlertIntegrity Monitoring

47. Integrity Monitoring

48. Keys Respond Review configuration Apply intrusion prevention Repair Patch vulnerability in new AMI Leverage integrity monitoring

49. Keys Visibility Security Time

50. Build With Confidence

51. aws.trendmicro.com NEW YORK

Defending Your Workloads Against the Next Zero-Day Vulnerability

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (20)

Similar to Defending Your Workloads Against the Next Zero-Day Vulnerability

Similar to Defending Your Workloads Against the Next Zero-Day Vulnerability (20)

More from Amazon Web Services

More from Amazon Web Services (20)

Recently uploaded

Recently uploaded (20)

Defending Your Workloads Against the Next Zero-Day Vulnerability