MuleSoft's Anypoint Runtime Fabric is a container service that brings cloud benefits to "on-premise" Mule app deployments. However, if you are familiar with how to secure CloudHub applications, you'll quickly learn that the way to secure Runtime Fabric applications is quite different.
By attending this Meetup, you'll learn the nuances of securing your Runtime Fabric applications. Big Compass' MuleSoft Practice Manager, Brian Statkevicus, and one of Big Compass' MuleSoft Consultants, Connor Fitzgerald, will cover the following topics:
* A brief introduction to Anypoint Runtime Fabric (RTF)
* Secure your RTF deployment
* Secure your APIs from a variety of threats, both external and
internal
* Secure your at-rest configuration properties
* Secure your in-flight data through Tokenization
After this Meetup, you'll know what to expect when you develop your RTF security strategy.
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Akshata Sawant
Come join us at the Online Meetup to learn more about ServiceNow and Gmail Integration with MuleSoft with detailed Demo. Help us spread the knowledge of Mule!
A brief agenda:
> Networking and Knowledge sharing.
> MuleSoft Latest Product Release Updates.
> Runtime Fabric in depth architecture.
> Finally, we will wrap-up this event with the agenda for the next meetup.
Stay connected to get updates on what's new in MuleSoft.
This document provides an introduction to MuleSoft, including information about the presenter, an overview of what MuleSoft is and its products, and a demonstration of Anypoint Studio. Key points covered include that MuleSoft is an integration platform owned by Salesforce, its products allow users to design, develop, test, deploy, manage, secure and reuse APIs through a visual interface, and its main products are Anypoint Platform and Anypoint Studio. The presentation concludes with references, community resources, and contact information for the presenter.
Mule 4 Migration Planning by Anu Vijayamohan
Integration Challenges by Angel Alberici
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Mule 4 Migration Planning
This session is for Consultants, Developers, Engineers and Architects who want to understand what the benefits of Mule 4 are and how to plan their migration ahead of the Mule 3.8 End of Life deadlines.
In this session we will discuss:
Mule 4 Benefits
Product EOL - Implications of not migrating
Where and How do I start?
Migration Planning & Decision Guides
Enablement and Customer Adoption
Mule Migration Assistant
After this session, you will have a better understanding of how to plan a successful migration to Mule 4
Integration Challenges
Top common technical integration challenges that he keeps seeing when working with customers
This document provides an overview and agenda for an online meetup discussing Ingress V2 for Runtime Fabric on self-managed Kubernetes. The agenda includes guidelines for the meetup, a walkthrough of Ingress V2, a demo, and a question and answer session. Ingress V2 allows for custom ingress configurations using ingress resource templates that define rules like hostnames, paths, backends and TLS settings. It provides benefits over the previous ingress configuration model like supporting multiple ingress controllers and configurations per application.
Benefits of integration with the Mulesoft Anypoint PlatformCloud Analogy
The Mulesoft Anypoint Platform is the world's leading integration platform for APIs, Software as a service (SaaS), and Service-oriented architecture (SOA).
Read to learn what Mule Runtime Fabric (RTF) and Anypoint RTF are, how you can leverage these integration engines, the best adoption strategies, and the right way to conduct the risk-cost-benefit analysis for your business.
Speaker: Chris Du Preez
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Meetups: https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-runtime-fabric-rtf-foundations/
Runtime Fabric Foundations. Tune in this time to get a full overview around RTF: architecture, learning paths, tips, how to avoid pitfalls and more. Time to learn. Chris Du Preez will be guiding us through this 50 minutes session!
Anypoint Runtime Fabric is a container service that automates the deployment and orchestration of Mule applications and API gateways. Runtime Fabric runs within a customer-managed infrastructure on AWS, Azure, virtual machines (VMs), and bare-metal servers. (Find out more: https://docs.mulesoft.com/runtime-fabric/1.7/)
Manchester MuleSoft Meetup #6 - Runtime Fabric with Mulesoft Akshata Sawant
Come join us at the Online Meetup to learn more about ServiceNow and Gmail Integration with MuleSoft with detailed Demo. Help us spread the knowledge of Mule!
A brief agenda:
> Networking and Knowledge sharing.
> MuleSoft Latest Product Release Updates.
> Runtime Fabric in depth architecture.
> Finally, we will wrap-up this event with the agenda for the next meetup.
Stay connected to get updates on what's new in MuleSoft.
This document provides an introduction to MuleSoft, including information about the presenter, an overview of what MuleSoft is and its products, and a demonstration of Anypoint Studio. Key points covered include that MuleSoft is an integration platform owned by Salesforce, its products allow users to design, develop, test, deploy, manage, secure and reuse APIs through a visual interface, and its main products are Anypoint Platform and Anypoint Studio. The presentation concludes with references, community resources, and contact information for the presenter.
Mule 4 Migration Planning by Anu Vijayamohan
Integration Challenges by Angel Alberici
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Mule 4 Migration Planning
This session is for Consultants, Developers, Engineers and Architects who want to understand what the benefits of Mule 4 are and how to plan their migration ahead of the Mule 3.8 End of Life deadlines.
In this session we will discuss:
Mule 4 Benefits
Product EOL - Implications of not migrating
Where and How do I start?
Migration Planning & Decision Guides
Enablement and Customer Adoption
Mule Migration Assistant
After this session, you will have a better understanding of how to plan a successful migration to Mule 4
Integration Challenges
Top common technical integration challenges that he keeps seeing when working with customers
This document provides an overview and agenda for an online meetup discussing Ingress V2 for Runtime Fabric on self-managed Kubernetes. The agenda includes guidelines for the meetup, a walkthrough of Ingress V2, a demo, and a question and answer session. Ingress V2 allows for custom ingress configurations using ingress resource templates that define rules like hostnames, paths, backends and TLS settings. It provides benefits over the previous ingress configuration model like supporting multiple ingress controllers and configurations per application.
Benefits of integration with the Mulesoft Anypoint PlatformCloud Analogy
The Mulesoft Anypoint Platform is the world's leading integration platform for APIs, Software as a service (SaaS), and Service-oriented architecture (SOA).
Read to learn what Mule Runtime Fabric (RTF) and Anypoint RTF are, how you can leverage these integration engines, the best adoption strategies, and the right way to conduct the risk-cost-benefit analysis for your business.
Speaker: Chris Du Preez
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Meetups: https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-runtime-fabric-rtf-foundations/
Runtime Fabric Foundations. Tune in this time to get a full overview around RTF: architecture, learning paths, tips, how to avoid pitfalls and more. Time to learn. Chris Du Preez will be guiding us through this 50 minutes session!
Anypoint Runtime Fabric is a container service that automates the deployment and orchestration of Mule applications and API gateways. Runtime Fabric runs within a customer-managed infrastructure on AWS, Azure, virtual machines (VMs), and bare-metal servers. (Find out more: https://docs.mulesoft.com/runtime-fabric/1.7/)
Speaker: Anu Vijayamohan
Host: Angel Alberici
VirtualMuleys: 66 - 20220304-April
Recording & Slides: https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-mulesoft-sizing-guidelines/
All Recordings & Slides: meetups.mulesoft.com/online-group-english/ & youtube.com/c/VirtualMuleysOnline/videos
In this session we will discuss:
Core concepts of sizing
Factors that impact mule sizing
T-Shirt sizing
Sizing nuances in Cloudhub vs OnPrem vs RTF
High Availability
MuleSoft Anypoint Platform and Three Tier ArchitectureHarish Kumar
Every business need to integrate the above three actors and their engagement to systems for the best possible outcome. How to do it and Best way to do it , An Introduction
Operationalizing your C4E VirtualMuleys & Deployment Considerations: Cloudhub...Angel Alberici
VirtualMuleys - March 2021 Meetup - 20210303
Speakers:
Arno A. Brugman: Operationalizing your C4E
Anu Vijayamohan: Deployment Considerations: Cloudhub, RTF, Hybrid, On-Prem, etc.)
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Disclaimer: These presentations are to be used as guidelines, for a certification of your own Environments and selecting the best Deployment model for your needs you need to reach out to MuleSoft or an Approved Partner SI
c4e, center for enablement, center for excellence, cloudhub, coe, consulting, deployment, developers, mulesoft, mulesoftdevelopers, mulesoftmeetups, operational model, rtf 101
This document contains a presentation by Rupesh Sinha from Whishworks Ltd about an architecture solution presented to ABC, a UK-based luxury mobile device manufacturer. ABC wants to build an integration solution to unlock internal data for use on their website and mobile apps via APIs, and to accept and process orders from various sources through their internal systems. The presentation discusses MuleSoft's Anypoint Platform as a solution, showing how it can provide a centralized integration platform to connect various systems and create APIs to share data across ABC's applications and systems.
Best Practices in Implementing a Center for Enablement (C4E) within Your Orga...MuleSoft
Center for Enablement (C4E) is a cross-functional team that is charged with enabling their organization to consume and get full value from their integration projects and assets. Learn the step-by-step guide on rolling out a C4E within your organization by following a successful customer example.
The explosion of APIs, SaaS applications, and mobile devices has created a massive integration wave. The resulting shift in the way we connect is forcing an IT mega change unlike anything we've seen before. As the development model moves from writing lots of code to composing APIs together, a new generation of middle tier application architecture is being born.
This document provides an introduction to Mule, an open-source enterprise service bus (ESB). It discusses what Mule is, how to use it, and some of its core concepts. Mule uses technologies like staged event-driven architecture (SEDA) and Java NIO to process events and messages asynchronously and efficiently. The document then explains Mule concepts like endpoints, transports, connectors, routers, filters, transformers and the universal message object (UMO) that Mule uses to process events through its pipeline. It provides examples of using Mule with file endpoints and XML pipelines.
The Metrics Framework is an extensible Mule application that collects, aggregates, and loads metrics into visualization systems. It provides out-of-the-box integrations and visualization options. Metrics measure aspects of business activity, while KPIs reflect strategic goals composed of one or more metrics. The framework collects metrics over time to derive KPIs by visualizing metric behavior in timeline charts. This allows organizations to track the success of activities and goals.
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)Prashanth Kurimella
Differences between MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
For additional information, read https://www.linkedin.com/pulse/mulesoft-deployment-strategies-rtf-vs-hybrid-cloudhub-kurimella/
Exploring Universal API Management And Flex Gatewayshyamraj55
The document summarizes an upcoming Patna MuleSoft Meetup event on exploring universal API management and Flex Gateway. The agenda includes an introduction to universal API management, the Anypoint API Catalog CLI, Anypoint API Governance, and Anypoint Flex Gateway. It provides overviews of each topic, including the purpose of universal API management in addressing API sprawl challenges, how the API Catalog CLI can be used to catalog APIs, and how Flex Gateway delivers performance and security for APIs running anywhere. The event will conclude with a Q&A session.
Session on API auto scaling, monitoring and Log managementpqrs1234
API Autoscaling
When to configure
How to configure
Points to be noted while configuring
Anypoint Monitoring Overview
Advantages and uses
Built-in dashboards
Custom dashboards
Reports
Alerts
Functional Monitoring
Log Management
Log Search
Log Points
Log Download
The document provides an agenda for the Manila MuleSoft Meetup #14 on October 20, 2022. The meetup will include presentations on success stories, MuleSoft training and certifications, Cloudhub 2.0, and a quiz game. There will be introductions from 6:35-6:40pm, presentations from 6:40-7:35pm, dinner from 7:40-7:50pm, and networking from 7:50pm onward. Speakers include representatives from Capgemini and MuleSoft who will discuss topics like Cloudhub 2.0, success stories, and training updates.
Nous accueillons Hassen Ati et Yassine Aarabat de MuleSoft qui vont nous présenter les usages de la plateforme Anypoint de MuleSoft. L’occasion pour vous de découvrir la puissance de cette plateforme et de poser vos questions aux experts.
MuleSoft's Approach to Driving Customer Outcomes MuleSoft
From our experience in working with over 1,000 customers, we’ve codified an approach that will help you to avoid common IT failures. Join this session to learn about the three critical pillars (business outcomes, org enablement, technology) needed to achieve your outcomes and how to get started.
Object Store v2 provides fast sharing of data and states across batch processes, Mule components, multiple distributed applications, and enables use of a distributed object store for advanced use cases such as API caching and API rate limiting. Learn what's new with object store and provide real-time feedback to MuleSoft's product management team.
Product Vision and Roadmap for Anypoint PlatformMuleSoft
This document provides an overview and roadmap for MuleSoft's product updates as of April 20th, 2017. It notes that since the previous CONNECT conference in 2016, MuleSoft has delivered 199 customer enhancements, 173 releases, and over 1050 product improvements. The roadmap highlights new and upcoming features to enable new use cases, best practices, operational excellence, analytics, and expanded developer tools. It emphasizes MuleSoft's vision of an application network and how the Anypoint Platform supports building and managing such a network through API-led connectivity, design, development, deployment, and operations tools.
MuleSoft's Approach to Driving Customer Outcomes MuleSoft
MuleSoft's approach to driving customer outcomes centers around three pillars: business outcomes, technology delivery, and organizational enablement. They provide six paths for customers to focus on along with playbooks for each path. The goal is to establish a foundation, build to scale, plan for success, and measure impact. MuleSoft offers services like Catalyst Launch to help customers deploy Anypoint Platform, implement initial use cases, build a Center for Enablement, and develop dashboards and KPIs. They work closely with customers to ensure success through customized delivery approaches, offerings, and engagement styles.
This document provides an agenda for a Meetup event on building APIs with MuleSoft and SpringBoot. The agenda includes introductions, an overview of Mule and how it relates to Java, a discussion of the API lifecycle including building APIs with MuleSoft and SpringBoot, and a trivia game to win a MuleSoft course. Sponsor and speaker bios are also included. The event will compare tasks like connecting to Salesforce, API design, implementation, DevOps, and operations between MuleSoft and a SpringBoot implementation. MuleSoft provides out-of-the-box capabilities while SpringBoot requires implementing more functionality from scratch.
The document provides an overview of Anypoint CloudHub 2.0 presented at a MuleSoft meetup group in Patna. It introduces CloudHub 2.0 and discusses its features like containerization, multi-tenancy, availability, scalability, and security. The presentation agenda includes what CloudHub 2.0 is, its key features and architecture, deployment flow, and application monitoring capabilities. It also demonstrates CloudHub 2.0 through a demo and concludes with a Q&A section.
MuleSoft's Anypoint Runtime Fabric is a container service that brings cloud benefits to "on-premise" Mule app deployments. However, if you are familiar with how to secure CloudHub applications, you'll quickly learn that the way to secure Runtime Fabric applications is quite different.
By attending this Meetup, you'll learn the nuances of securing your Runtime Fabric applications. Big Compass' MuleSoft Practice Manager, Brian Statkevicus, and one of Big Compass' MuleSoft Consultants, Connor Fitzgerald, will cover the following topics:
* A brief introduction to Anypoint Runtime Fabric (RTF)
* Secure your RTF deployment
* Secure your APIs from a variety of threats, both external and internal
* Secure your at-rest configuration properties
* Secure your in-flight data through Tokenization
After this Meetup, you'll know what to expect when you develop your RTF security strategy.
Speaker: Anu Vijayamohan
Host: Angel Alberici
VirtualMuleys: 66 - 20220304-April
Recording & Slides: https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-mulesoft-sizing-guidelines/
All Recordings & Slides: meetups.mulesoft.com/online-group-english/ & youtube.com/c/VirtualMuleysOnline/videos
In this session we will discuss:
Core concepts of sizing
Factors that impact mule sizing
T-Shirt sizing
Sizing nuances in Cloudhub vs OnPrem vs RTF
High Availability
MuleSoft Anypoint Platform and Three Tier ArchitectureHarish Kumar
Every business need to integrate the above three actors and their engagement to systems for the best possible outcome. How to do it and Best way to do it , An Introduction
Operationalizing your C4E VirtualMuleys & Deployment Considerations: Cloudhub...Angel Alberici
VirtualMuleys - March 2021 Meetup - 20210303
Speakers:
Arno A. Brugman: Operationalizing your C4E
Anu Vijayamohan: Deployment Considerations: Cloudhub, RTF, Hybrid, On-Prem, etc.)
Host: Angel Alberici
Youtube: Virtual Muleys (https://www.youtube.com/c/VirtualMuleysOnline/videos)
Disclaimer: These presentations are to be used as guidelines, for a certification of your own Environments and selecting the best Deployment model for your needs you need to reach out to MuleSoft or an Approved Partner SI
c4e, center for enablement, center for excellence, cloudhub, coe, consulting, deployment, developers, mulesoft, mulesoftdevelopers, mulesoftmeetups, operational model, rtf 101
This document contains a presentation by Rupesh Sinha from Whishworks Ltd about an architecture solution presented to ABC, a UK-based luxury mobile device manufacturer. ABC wants to build an integration solution to unlock internal data for use on their website and mobile apps via APIs, and to accept and process orders from various sources through their internal systems. The presentation discusses MuleSoft's Anypoint Platform as a solution, showing how it can provide a centralized integration platform to connect various systems and create APIs to share data across ABC's applications and systems.
Best Practices in Implementing a Center for Enablement (C4E) within Your Orga...MuleSoft
Center for Enablement (C4E) is a cross-functional team that is charged with enabling their organization to consume and get full value from their integration projects and assets. Learn the step-by-step guide on rolling out a C4E within your organization by following a successful customer example.
The explosion of APIs, SaaS applications, and mobile devices has created a massive integration wave. The resulting shift in the way we connect is forcing an IT mega change unlike anything we've seen before. As the development model moves from writing lots of code to composing APIs together, a new generation of middle tier application architecture is being born.
This document provides an introduction to Mule, an open-source enterprise service bus (ESB). It discusses what Mule is, how to use it, and some of its core concepts. Mule uses technologies like staged event-driven architecture (SEDA) and Java NIO to process events and messages asynchronously and efficiently. The document then explains Mule concepts like endpoints, transports, connectors, routers, filters, transformers and the universal message object (UMO) that Mule uses to process events through its pipeline. It provides examples of using Mule with file endpoints and XML pipelines.
The Metrics Framework is an extensible Mule application that collects, aggregates, and loads metrics into visualization systems. It provides out-of-the-box integrations and visualization options. Metrics measure aspects of business activity, while KPIs reflect strategic goals composed of one or more metrics. The framework collects metrics over time to derive KPIs by visualizing metric behavior in timeline charts. This allows organizations to track the success of activities and goals.
MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)Prashanth Kurimella
Differences between MuleSoft Deployment Strategies (RTF vs Hybrid vs CloudHub)
For additional information, read https://www.linkedin.com/pulse/mulesoft-deployment-strategies-rtf-vs-hybrid-cloudhub-kurimella/
Exploring Universal API Management And Flex Gatewayshyamraj55
The document summarizes an upcoming Patna MuleSoft Meetup event on exploring universal API management and Flex Gateway. The agenda includes an introduction to universal API management, the Anypoint API Catalog CLI, Anypoint API Governance, and Anypoint Flex Gateway. It provides overviews of each topic, including the purpose of universal API management in addressing API sprawl challenges, how the API Catalog CLI can be used to catalog APIs, and how Flex Gateway delivers performance and security for APIs running anywhere. The event will conclude with a Q&A session.
Session on API auto scaling, monitoring and Log managementpqrs1234
API Autoscaling
When to configure
How to configure
Points to be noted while configuring
Anypoint Monitoring Overview
Advantages and uses
Built-in dashboards
Custom dashboards
Reports
Alerts
Functional Monitoring
Log Management
Log Search
Log Points
Log Download
The document provides an agenda for the Manila MuleSoft Meetup #14 on October 20, 2022. The meetup will include presentations on success stories, MuleSoft training and certifications, Cloudhub 2.0, and a quiz game. There will be introductions from 6:35-6:40pm, presentations from 6:40-7:35pm, dinner from 7:40-7:50pm, and networking from 7:50pm onward. Speakers include representatives from Capgemini and MuleSoft who will discuss topics like Cloudhub 2.0, success stories, and training updates.
Nous accueillons Hassen Ati et Yassine Aarabat de MuleSoft qui vont nous présenter les usages de la plateforme Anypoint de MuleSoft. L’occasion pour vous de découvrir la puissance de cette plateforme et de poser vos questions aux experts.
MuleSoft's Approach to Driving Customer Outcomes MuleSoft
From our experience in working with over 1,000 customers, we’ve codified an approach that will help you to avoid common IT failures. Join this session to learn about the three critical pillars (business outcomes, org enablement, technology) needed to achieve your outcomes and how to get started.
Object Store v2 provides fast sharing of data and states across batch processes, Mule components, multiple distributed applications, and enables use of a distributed object store for advanced use cases such as API caching and API rate limiting. Learn what's new with object store and provide real-time feedback to MuleSoft's product management team.
Product Vision and Roadmap for Anypoint PlatformMuleSoft
This document provides an overview and roadmap for MuleSoft's product updates as of April 20th, 2017. It notes that since the previous CONNECT conference in 2016, MuleSoft has delivered 199 customer enhancements, 173 releases, and over 1050 product improvements. The roadmap highlights new and upcoming features to enable new use cases, best practices, operational excellence, analytics, and expanded developer tools. It emphasizes MuleSoft's vision of an application network and how the Anypoint Platform supports building and managing such a network through API-led connectivity, design, development, deployment, and operations tools.
MuleSoft's Approach to Driving Customer Outcomes MuleSoft
MuleSoft's approach to driving customer outcomes centers around three pillars: business outcomes, technology delivery, and organizational enablement. They provide six paths for customers to focus on along with playbooks for each path. The goal is to establish a foundation, build to scale, plan for success, and measure impact. MuleSoft offers services like Catalyst Launch to help customers deploy Anypoint Platform, implement initial use cases, build a Center for Enablement, and develop dashboards and KPIs. They work closely with customers to ensure success through customized delivery approaches, offerings, and engagement styles.
This document provides an agenda for a Meetup event on building APIs with MuleSoft and SpringBoot. The agenda includes introductions, an overview of Mule and how it relates to Java, a discussion of the API lifecycle including building APIs with MuleSoft and SpringBoot, and a trivia game to win a MuleSoft course. Sponsor and speaker bios are also included. The event will compare tasks like connecting to Salesforce, API design, implementation, DevOps, and operations between MuleSoft and a SpringBoot implementation. MuleSoft provides out-of-the-box capabilities while SpringBoot requires implementing more functionality from scratch.
The document provides an overview of Anypoint CloudHub 2.0 presented at a MuleSoft meetup group in Patna. It introduces CloudHub 2.0 and discusses its features like containerization, multi-tenancy, availability, scalability, and security. The presentation agenda includes what CloudHub 2.0 is, its key features and architecture, deployment flow, and application monitoring capabilities. It also demonstrates CloudHub 2.0 through a demo and concludes with a Q&A section.
MuleSoft's Anypoint Runtime Fabric is a container service that brings cloud benefits to "on-premise" Mule app deployments. However, if you are familiar with how to secure CloudHub applications, you'll quickly learn that the way to secure Runtime Fabric applications is quite different.
By attending this Meetup, you'll learn the nuances of securing your Runtime Fabric applications. Big Compass' MuleSoft Practice Manager, Brian Statkevicus, and one of Big Compass' MuleSoft Consultants, Connor Fitzgerald, will cover the following topics:
* A brief introduction to Anypoint Runtime Fabric (RTF)
* Secure your RTF deployment
* Secure your APIs from a variety of threats, both external and internal
* Secure your at-rest configuration properties
* Secure your in-flight data through Tokenization
After this Meetup, you'll know what to expect when you develop your RTF security strategy.
INTERFACE, by apidays - The future of API Management in a hybrid, multi-clou...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
The future of API Management in a hybrid, multi-cloud world
Shaun Clowes, SVP of Product at Mulesoft
Tableau can help anyone see and understand their data. Connect to almost any database, drag and drop to create visualizations, and share with a click.
Let's learn Tableau from a Salesforce MVP..
Mark’s passion is enabling a data-driven transformation with intelligent, actionable insights. He is a recipient of the coveted Gold Hoodie (2017) award, and is a published author, thought leader, and global Salesforce event speaker.
Mark loves building smart business analytics that really works, combining business acumen with technical skill to create intelligent and informed insights. With a background in mathematics and engineering, Mark is passionate about solving problems using technology and data. He founded and led a Salesforce partner business, ClearR, for four years, delivering outstanding analytics solutions for Salesforce customers.
Quip can be used to create a centralized location for documenting a Salesforce org. Key benefits include:
1) Real-time collaboration on documents through in-line comments and notifications.
2) Creating templates to standardize processes and documents across projects.
3) Integrating Quip seamlessly with Salesforce for access directly from record pages.
4) Organizing documentation into a file structure with shared business unit folders and record-level sharing.
Speaker: Anu Vijayamohan
Moderator: Angel Alberici
Youtube: Virtual Muleys
https://meetups.mulesoft.com/events/details/mulesoft-online-group-english-presents-mulesoft-composer/
This session is for Consultants, Developers, Engineers and Architects who want to be introduced to MuleSoft Composer and how it can further help close the IT delivery gap
1. Introduction to MuleSoft Composer and Developer use cases
2. Short Demonstration
3. Q&A
The document summarizes an event hosted by the Adelaide MuleSoft Meetup Group. The agenda included introductions, a discussion on the evolution of event-driven architectures, a demo using Async API standards and the Snowflake connector, a Kahoot quiz, and announcements for the next meetup. The demo showed how MuleSoft and its connectors can be used to build an event-driven architecture for meter data integration using Kafka as the event broker and Snowflake for data storage.
1. The document discusses a presentation by a company about its financial and operating results, including expected revenue, earnings, growth rates, and environmental goals.
2. It contains forward-looking statements that are subject to risks and uncertainties that could cause actual results to differ materially.
3. It lists various risks that could affect the company's results, such as economic conditions, the coronavirus pandemic, foreign exchange rates, and the company's business strategy and growth plans.
Maximizing Salesforce Lightning Experience and Lightning Component PerformanceSalesforce Developers
The document discusses various factors that affect the performance of Lightning Experience and Lightning Component pages. It outlines six main factors: geographical and network latency, device and browser capabilities, Salesforce org configuration, page complexity, component architecture, and server processing. For each factor, it provides recommendations for how to measure and optimize performance, such as enabling the Salesforce Edge network, limiting the number of components on a page, using conditional rendering, and leveraging caching features. The overall message is that page load time in Lightning Experience is sensitive to these infrastructure, code, and configuration factors.
London Salesforce Developers TDX 20 Global GatheringKeir Bowden
Slide deck from the London Salesforce Developers Virtual TrailheaDX 2020 Global Gathering, covering the key announcements from a developer perspective.
The document summarizes a MuleSoft meetup event that included presentations on the MuleSoft Solace Connector, Event Mesh, and MuleSoft product updates. The agenda included introductions, a presentation on the Solace Connector and Event Mesh by Jason Abram, and a presentation on MuleSoft updates by Ryan Grondal and Michael Price. The MuleSoft updates presentation covered key market trends, MuleSoft's 3-5 year strategy, ideas submitted to the product portal, and new features launched in Q4 2021 around connectivity, integration, APIs, and the platform. The event concluded with networking time.
This document summarizes Juan José Rodríguez's presentation on the present and future of Anypoint Platform. The presentation discusses MuleSoft's 3-5 year product strategy of empowering all users to innovate with security, unlocking IT productivity through integration, and connecting systems through universal API management. It also covers new innovations like support for AsyncAPI, GraphQL, automatic API cataloging through CI/CD pipelines, and a vision for a unified API management platform.
Sample Gallery: Reference Code and Best Practices for Salesforce DevelopersSalesforce Developers
This document provides an overview of the Salesforce Sample Gallery, which contains sample applications, reference code, and best practices for Salesforce developers. It describes different types of sample apps, including recipe style apps with specific code examples and standalone apps that demonstrate features. The document also outlines upcoming updates to the gallery, such as adding new applications and retiring outdated ones. It promotes benefits like inspiration, learning open source code, and understanding development best practices.
Admin Best Practices: 3 Steps to Seamless DeploymentsSalesforce Admins
This document discusses best practices for software development lifecycles (SDLC) for administrators. It outlines a 3 step process for seamless deployments:
1. Plan - Emphasize quality from the beginning through discovery, requirements gathering, and defining the path to production. Important to plan environments and all testing.
2. Communicate - Identify stakeholders like business users, Salesforce team, and IT. Communicate new features, release dates, specifications to avoid waste.
3. Execute - Consider user traffic, validate success, establish a warranty period, and be ready to rollback. Backup data and metadata before deploying changes.
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21DianeKesler2
David Louie, Sr. Director, Product Management at MuleSoft provides an in-depth product enablement session on our upcoming release of the NEW MuleSoft Composer! Derek Bransford, MuleSoft Senior Curriculum Developer, introduces Open Learning, a new MuleSoft Learning Platform.
The document summarizes a Cleveland developer group meeting that took place virtually. Attendees were encouraged to introduce themselves by sharing their name, location, and if they watched any sessions from Virtual TDX this year. The document also provides links for joining the developer group on Trailblazer and accessing resources from the meeting.
The document contains forward-looking statements about the company's financial and operating results, including expected revenue, earnings, and other metrics. These statements involve risks and uncertainties that could cause actual results to differ materially. The risks include general economic conditions, the impact of competition and technology changes, and issues related to the company's business strategy, international operations, acquisitions, taxes, litigation, and other legal and regulatory matters.
Similar to Denver MuleSoft Meetup: Deep Dive into Anypoint Runtime Fabric Security (20)
For the full video of this presentation, please visit: https://www.edge-ai-vision.com/2024/06/building-and-scaling-ai-applications-with-the-nx-ai-manager-a-presentation-from-network-optix/
Robin van Emden, Senior Director of Data Science at Network Optix, presents the “Building and Scaling AI Applications with the Nx AI Manager,” tutorial at the May 2024 Embedded Vision Summit.
In this presentation, van Emden covers the basics of scaling edge AI solutions using the Nx tool kit. He emphasizes the process of developing AI models and deploying them globally. He also showcases the conversion of AI models and the creation of effective edge AI pipelines, with a focus on pre-processing, model conversion, selecting the appropriate inference engine for the target hardware and post-processing.
van Emden shows how Nx can simplify the developer’s life and facilitate a rapid transition from concept to production-ready applications.He provides valuable insights into developing scalable and efficient edge AI solutions, with a strong focus on practical implementation.
Ocean lotus Threat actors project by John Sitima 2024 (1).pptxSitimaJohn
Ocean Lotus cyber threat actors represent a sophisticated, persistent, and politically motivated group that poses a significant risk to organizations and individuals in the Southeast Asian region. Their continuous evolution and adaptability underscore the need for robust cybersecurity measures and international cooperation to identify and mitigate the threats posed by such advanced persistent threat groups.
Taking AI to the Next Level in Manufacturing.pdfssuserfac0301
Read Taking AI to the Next Level in Manufacturing to gain insights on AI adoption in the manufacturing industry, such as:
1. How quickly AI is being implemented in manufacturing.
2. Which barriers stand in the way of AI adoption.
3. How data quality and governance form the backbone of AI.
4. Organizational processes and structures that may inhibit effective AI adoption.
6. Ideas and approaches to help build your organization's AI strategy.
AI-Powered Food Delivery Transforming App Development in Saudi Arabia.pdfTechgropse Pvt.Ltd.
In this blog post, we'll delve into the intersection of AI and app development in Saudi Arabia, focusing on the food delivery sector. We'll explore how AI is revolutionizing the way Saudi consumers order food, how restaurants manage their operations, and how delivery partners navigate the bustling streets of cities like Riyadh, Jeddah, and Dammam. Through real-world case studies, we'll showcase how leading Saudi food delivery apps are leveraging AI to redefine convenience, personalization, and efficiency.
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfMalak Abu Hammad
Discover how MongoDB Atlas and vector search technology can revolutionize your application's search capabilities. This comprehensive presentation covers:
* What is Vector Search?
* Importance and benefits of vector search
* Practical use cases across various industries
* Step-by-step implementation guide
* Live demos with code snippets
* Enhancing LLM capabilities with vector search
* Best practices and optimization strategies
Perfect for developers, AI enthusiasts, and tech leaders. Learn how to leverage MongoDB Atlas to deliver highly relevant, context-aware search results, transforming your data retrieval process. Stay ahead in tech innovation and maximize the potential of your applications.
#MongoDB #VectorSearch #AI #SemanticSearch #TechInnovation #DataScience #LLM #MachineLearning #SearchTechnology
CAKE: Sharing Slices of Confidential Data on BlockchainClaudio Di Ciccio
Presented at the CAiSE 2024 Forum, Intelligent Information Systems, June 6th, Limassol, Cyprus.
Synopsis: Cooperative information systems typically involve various entities in a collaborative process within a distributed environment. Blockchain technology offers a mechanism for automating such processes, even when only partial trust exists among participants. The data stored on the blockchain is replicated across all nodes in the network, ensuring accessibility to all participants. While this aspect facilitates traceability, integrity, and persistence, it poses challenges for adopting public blockchains in enterprise settings due to confidentiality issues. In this paper, we present a software tool named Control Access via Key Encryption (CAKE), designed to ensure data confidentiality in scenarios involving public blockchains. After outlining its core components and functionalities, we showcase the application of CAKE in the context of a real-world cyber-security project within the logistics domain.
Paper: https://doi.org/10.1007/978-3-031-61000-4_16
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?Speck&Tech
ABSTRACT: A prima vista, un mattoncino Lego e la backdoor XZ potrebbero avere in comune il fatto di essere entrambi blocchi di costruzione, o dipendenze di progetti creativi e software. La realtà è che un mattoncino Lego e il caso della backdoor XZ hanno molto di più di tutto ciò in comune.
Partecipate alla presentazione per immergervi in una storia di interoperabilità, standard e formati aperti, per poi discutere del ruolo importante che i contributori hanno in una comunità open source sostenibile.
BIO: Sostenitrice del software libero e dei formati standard e aperti. È stata un membro attivo dei progetti Fedora e openSUSE e ha co-fondato l'Associazione LibreItalia dove è stata coinvolta in diversi eventi, migrazioni e formazione relativi a LibreOffice. In precedenza ha lavorato a migrazioni e corsi di formazione su LibreOffice per diverse amministrazioni pubbliche e privati. Da gennaio 2020 lavora in SUSE come Software Release Engineer per Uyuni e SUSE Manager e quando non segue la sua passione per i computer e per Geeko coltiva la sua curiosità per l'astronomia (da cui deriva il suo nickname deneb_alpha).
Best 20 SEO Techniques To Improve Website Visibility In SERPPixlogix Infotech
Boost your website's visibility with proven SEO techniques! Our latest blog dives into essential strategies to enhance your online presence, increase traffic, and rank higher on search engines. From keyword optimization to quality content creation, learn how to make your site stand out in the crowded digital landscape. Discover actionable tips and expert insights to elevate your SEO game.
Things to Consider When Choosing a Website Developer for your Website | FODUUFODUU
Choosing the right website developer is crucial for your business. This article covers essential factors to consider, including experience, portfolio, technical skills, communication, pricing, reputation & reviews, cost and budget considerations and post-launch support. Make an informed decision to ensure your website meets your business goals.
AI 101: An Introduction to the Basics and Impact of Artificial IntelligenceIndexBug
Imagine a world where machines not only perform tasks but also learn, adapt, and make decisions. This is the promise of Artificial Intelligence (AI), a technology that's not just enhancing our lives but revolutionizing entire industries.
AI 101: An Introduction to the Basics and Impact of Artificial Intelligence
Denver MuleSoft Meetup: Deep Dive into Anypoint Runtime Fabric Security
1. May 19, 2021
Denver (Virtual) MuleSoft Meetup Group
Deep Dive into Anypoint Runtime Fabric Security
2. 2
● 6:30 - 6:35 - Attendees join Meetup
● 6:35 - 6:40 - Introductions
● 6:40 - 7:50 - Deep Dive into Anypoint Runtime Fabric Security
● 7:50 - 8:00 - Wrap up and next Meetup
● 8:00 - Meetup concludes
Agenda
3. 3
● About Big Compass:
○ Stephanie Lawrence
○ Linda Gunn
○ Brian Statkevicus
Introductions
Use Chat - tell us where you are joining us from
4. 4
● Use Chat
● One answer per person per question
○ If you answer more than 1x per question, you are ineligible for that question
● If you’ve already won during today’s Meetup, you cannot win again
● Big Compass makes the final decision on the trivia winners that will be submitted to MuleSoft
(see next slide)
Trivia Questions - “House Rules”
More important Trivia guidelines on next slide
5. 5
● Big Compass emails trivia winners a link to a Google Form for the trivia winners to complete
● Once you complete this form, MuleSoft will verify:
○ You haven’t already won this month
○ You’re not trying other means to circumvent the 1x/month rule
● MuleSoft will send you the voucher
○ The voucher is a training voucher, not a standalone exam voucher. If you select an exam on the
Google Form as opposed to selecting a course, you will not receive a voucher.
○ MuleSoft retains the final decision on determining your eligibility to receive a training voucher
● If you have trouble redeeming a voucher or have not received a voucher, open a ticket at
training.mulesoft.com/question. DO NOT CONTACT US!
Trivia Questions - MuleSoft Guidelines
6. Forward-looking statements
6
"Safe harbor" statement under the Private Securities Litigation Reform Act of 1995: This presentation contains forward-looking statements about the company's financial and
operating results, which may include expected GAAP and non-GAAP financial and other operating and non-operating results, including revenue, net income, diluted earnings
per share, operating cash flow growth, operating margin improvement, expected revenue growth, expected current remaining performance obligation growth, expected tax
rates, stock-based compensation expenses, amortization of purchased intangibles, shares outstanding, market growth, environmental, social and governance goals and
expected capital allocation, including mergers and acquisitions, capital expenditures and other investments. The achievement or success of the matters covered by such
forward-looking statements involves risks, uncertainties and assumptions. If any such risks or uncertainties materialize or if any of the assumptions prove incorrect, the
company’s results could differ materially from the results expressed or implied by the forward-looking statements it makes.
The risks and uncertainties referred to above include -- but are not limited to -- risks associated with the effect of general economic and market conditions; the impact of
geopolitical events, natural disasters and actual or threatened public health emergencies, such as the ongoing Coronavirus pandemic; the impact of foreign currency exchange
rate and interest rate fluctuations on our results; our business strategy and our plan to build our business, including our strategy to be the leading provider of enterprise cloud
computing applications and platforms; the pace of change and innovation in enterprise cloud computing services; the seasonal nature of our sales cycles; the competitive
nature of the market in which we participate; our international expansion strategy; the demands on our personnel and infrastructure resulting from significant growth in our
customer base and operations, including as a result of acquisitions; our service performance and security, including the resources and costs required to avoid unanticipated
downtime and prevent, detect and remediate potential security breaches; the expenses associated with our data centers and third-party infrastructure providers; additional data
center capacity; real estate and office facilities space; our operating results and cash flows; new services and product features, including any efforts to expand our services
beyond the CRM market; our strategy of acquiring or making investments in complementary businesses, joint ventures, services, technologies and intellectual property rights;
the performance and fair value of our investments in complementary businesses through our strategic investment portfolio; our ability to realize the benefits from strategic
partnerships, joint ventures and investments; the impact of future gains or losses from our strategic investment portfolio, including gains or losses from overall market
conditions that may affect the publicly traded companies within our strategic investment portfolio; our ability to execute our business plans; our ability to successfully integrate
acquired businesses and technologies; our ability to continue to grow unearned revenue and remaining performance obligation; our ability to protect our intellectual property
rights; our ability to develop our brands; our reliance on third-party hardware, software and platform providers; our dependency on the development and maintenance of the
infrastructure of the Internet; the effect of evolving domestic and foreign government regulations, including those related to the provision of services on the Internet, those
related to accessing the Internet, and those addressing data privacy, cross-border data transfers and import and export controls; the valuation of our deferred tax assets and
the release of related valuation allowances; the potential availability of additional tax assets in the future; the impact of new accounting pronouncements and tax laws;
uncertainties affecting our ability to estimate our tax rate; uncertainties regarding our tax obligations in connection with potential jurisdictional transfers of intellectual property,
including the tax rate, the timing of the transfer and the value of such transferred intellectual property; the impact of expensing stock options and other equity awards; the
sufficiency of our capital resources; factors related to our outstanding debt, revolving credit facility and loan associated with 50 Fremont; compliance with our debt covenants
and lease obligations; current and potential litigation involving us; and the impact of climate change.
Further information on these and other factors that could affect the company’s financial results is included in the reports on Forms 10-K, 10-Q and 8-K and in other filings it
makes with the Securities and Exchange Commission from time to time. These documents are available on the SEC Filings section of the Investor Information section of the
company’s website at.
Salesforce.com, inc. assumes no obligation and does not intend to update these forward-looking statements, except as required by law.
8. Moving from On-Prem to Runtime Fabric
Achieving Top Notch Security in RTF
● How do we secure secrets?
● How do we leverage what is already available in MuleSoft to secure our precious data assets?
● What is the best way to go about encryption of properties at rest?
● When does tokenization come in? How is it different from encryption? What are the benefits of doing one
over the other?
● What other aspects of security do we have to consider when we deploy our API’s to Runtime Fabric?
● What are the risks involved if we do not employ certain techniques to secure our API’s?
● What is the most important thing we must do to achieve security in the Runtime Fabric environment?
8
11. Anypoint Runtime Fabric
VM
Mule
App
VM
Mule
App
Mule
App
Runtime Fabric components
Runtime Fabric appliance
Mule
App
network
Runtime Fabric
Mule
App
Mule
App
VM
Runtime Fabric orchestrates and automates the
deployment of Mule runtimes into containers in any
cloud or on-premises environment
Benefits
● Easily manage via the control plane hosted by
MuleSoft
● Deploy consistently across any cloud or data center
● Run multiple runtime versions in the same Runtime
Fabric
● Scale horizontally and redeploy w/ zero-downtime
● Flexible deployment upon existing infrastructure or
managed K8s services
Overview
12. Deploy and manage runtimes on AKS, EKS, or GKE
Runtime Fabric on AKS, EKS, and GKE
Extend control plane benefits to
runtimes on your AKS, EKS, or
GKE
● Customer gets the latest
management and monitoring
features of Anypoint Platform
Decouple Mule runtime services
from your own infrastructure
● Give your ops teams the power
to use their infrastructure how
they want
12
CUSTOMER’S NETWORK
Mule
App
Mule
App
Mule
App
Runtime Fabric services
Mule
App
Mule
App
Mule
App
Mule
App
Mule
App
Mule
App
Runtime Plane
CONTROL
PLANE
Kubernetes-as-a-Service
Available now
GKE
13. Deploy and manage across any K8s service
Deploy across private
clouds
Open K8s access to
managed providers
Expanded K8s access
on managed providers
Across any K8s service
EKS
AKS
GKE
● Deploy standalone cluster
within AWS, Azure, or
on-prem
● Use K8s and docker without
K8s expertise
● Install RTF services into
private K8s environment
● Open access for customers
with existing K8s expertise
● COMING SOON! Support
for OpenShift container
platform
● COMING SOON! Run Mule
and non-Mule workloads on
the same K8s environment
● Open support for any
managed service built on
K8s
● Deploy across any K8s
environment
15. Appliance vs EKS, AKS, & GKE
Runtime Fabric Appliance
VM
Mule
App
VM
Mule
App
Mule
App
Runtime Fabric components
Runtime Fabric appliance
Mule
App
network
Runtime Fabric appliance
Mule
App
Mule
App
VM
Managed by Customer
Managed within Anypoint Platform
Customers bring their own hardware and
networking, and install Runtime Fabric on top
of it.
● Self-contained appliance-model
● Customers maintain the infrastructure
● MuleSoft maintains the Kubernetes
stack, RTF services and Mule
deployments
16. Appliance vs EKS, AKS, & GKE
Runtime Fabric is delivered to customers
as a package of components that run on
top of an existing EKS, AKS, or GKE
environment.
Customers bring their own Kubernetes,
ingress controller, and external log
forwarding and install RTF within it.
Customers maintain the health of
Kubernetes, and MuleSoft maintains the
RTF services and Mule deployments.
Runtime Fabric on EKS / AKS / GKE
Node
Mule
App
Node
Mule
App
Mule
App
Runtime Fabric services
EKS or AKS
Mule
App
network
Runtime Fabric on EKS / AKS
Mule
App
Mule
App
Node
Managed by K8s specialist
Managed within Anypoint Platform
19. ● EKS / AKS / GKE are
highly available and
managed by cloud
provider.
● Managed worker nodes
simplify node scaling
and upgrades.
● More customizable to
your organization’s
environment.
● Choose your own
ingress controller and
log forwarding agents.
Lower Cost
Benefits of RTF on EKS / AKS / GKE
More Flexible
● EKS / AKS/ GKE
replaces the controller
nodes.
● Pricing for Kubernetes
services provided by
IaaS
Less Overhead
20. Key Changes
RTF on EKS/AKS/GKE RTF appliance
Support for deploying Mules and API Gateways Supported. Supported.
Kubernetes and Docker Customers bring their own K8S via
provisioning EKS or AKS or GKE clusters.
MuleSoft supplies Docker images
Included.
Support for installing on any Linux distribution Supported. RHEL and CentOS only.
Support for node auto-scaling Supported using Azure, AWS, or Google
settings
Not supported.
Support for external log forwarding Customers bring their own external log
forwarder.
Included.
Support for internal load balancer Customers bring their own internal load
balancer (called “Ingress Controller”)
Included.
21. Key Changes (cont)
RTF on EKS/AKS/GKE RTF appliance
Support for Anypoint Security Edge Not supported. Supported.
Ops Center Not included. Customers can enable
similar monitoring and alerting from Cloud
console
Included.
Support for Persistence Gateway (new in v1.9.1 -
Apr 20, 2021 release). Permits data storage and
sharing across Mule application replicas and
restarts
Supported. Supported.
Tutorials on how to get started with RTF on EKS/AKS/GKE are here: https://developer.mulesoft.com/tutorials-and-howtos
22. Trivia Question #1
Which of the following do VM/Bare metal RTF installations provide that Self-Managed Kubernetes
DO NOT?
A. Ability to run multiple Mule runtime versions
B. Node autoscaling
C. Ability to deploy applications from Runtime Manager
D. Resource and Infrastructure monitoring via Ops Center
26. 26
Recommended Network Configuration
This is the default recommended configuration.
Note the following in this diagram:
● 3 controller nodes, 3 worker nodes. This
configuration enables fault tolerance if you
lose one controller node. Agents are deployed
to controller nodes.
● External load balancer forwards request to
available internal load balancer.
● Internal load balancer decrypts request and
sends request to available replica of the Mule
app
● All nodes are on the same subnet. This is the
recommended configuration for latency
reasons and networking simplicity.
27. 27
Network Security Best Practices
Based on this diagram:
● Ensure only IP addresses that are required
are open
● Ensure only ports that are required are
open
● Use an external balancer. This ensures
that Ingress communication is limited to a
trusted source (the external load balancer)
● You can deploy using a private and public
subnet model. Be aware if you set this
model up you will need to communicate
over low latency across subnets.
29. 29
● Uses multiple components to protect at multiple layers
● Generally viewed as a best practice
○ Each layer has a “backup” to counter any flaws or gaps in a particular layer
○ Usually superior to a single defense layer
● Drawbacks:
○ Can be costly depending on the components used
○ Can negatively impact performance
Layered Security
30. 30
● Protects against “brute force” and other simple attacks
● Gateway Security measures include
○ OAuth 2.0
○ Rate limiting
○ IP whitelisting/blacklisting
○ Client ID/Secret
○ JWT
○ SAML
First layer - API Gateway
31. 31
● WAF (Web Application Firewall) and RASP
(Runtime Application Self Protection) protect
against some of the OWASP “Top 10” attacks
https://owasp.org/www-project-top-ten/
● When combined with API Gateway, can defend
against:
○ SQL Injection
○ XML Threat
○ Cross site scripting
○ DoS
Second layer - WAF/RASP
32. 32
● Implements “Zero-Trust” Security
● Last line of defense that models API behavior
● Can detect deviations from normal behavior
● Protects against:
○ Stolen tokens and credentials
○ Insider threats
○ Authenticated access
Third layer - ML/AI
33. 33
● Used to apply “Edge” Security policies
○ DoS
○ IP Whitelist
○ HTTP Limits (size and headers only)
○ WAF
● Applies to all applications in RTF
● Can still configure individual application policies
using API Manager
● Does not provide ML/AI layer of protection
○ A custom policy plus a 3rd party solution
will enable this layer of security
● NOT supported on EKS/AKS/GKE
deployments
Anypoint Security
35. The Challenge
● Enterprise Information Systems (EISs) need credentials
○ Often use “service accounts” for automated integration solutions
○ These credentials may be subject to routine maintenance (i.e. change every 90 days)
● Other sensitive information may need to be secured
○ URLs
○ IP Addresses
● Storing these credentials in plain text is a sure-fire way to fail a security audit!
36. Step #1 - Secure Configuration Properties
Secure Configuration Properties
○ Uses https://docs.mulesoft.com/downloads/mule-runtime/4.2/secure-properties-tool.jar and your
favorite command line tool
○ Also requires Mule Secure Configuration Property Extension
○ Can encrypt individual properties, all properties, or the entire file content
○ Can use .yaml or .properties files
○ Requires key as a command line parameter
○ Preface your properties with “secure::”
Note: Another option to encrypt properties is to use the “Premium Security
Connector” at this site: http://security-update-site-1.4.s3.amazonaws.com/ .
However, this solution is not in ‘official’ Mule 4.3 documentation AND can only
be used with .properties files. We will not cover this solution in this presentation.
37. Step #2 - Safely Hidden Application Properties
Safely Hidden Application Properties
○ Not the same as CloudHub “Safely Hidden” Properties
■ Use mule-artifact.json for CloudHub “Safely Hidden” Properties
■ Consider injected properties
○ Use “rtfctl” as follows: sudo ./rtfctl apply secure-property --key <my_key> --value <my_value> -n <environment_id>
○ Note that you can still view the properties:
sudo ./rtfctl get secure-properties -n 92af6926-9a73-4858-9481-fe2a2668bd9b
KEY VALUE
decryptionKey <<value in plain text>>
38. Demo!
● What you will see:
○ Local connection testing with Secure Configuration Properties
○ Safely Hidden properties on RTF
○ Edge Security and API Manager Policies
● What you won’t see:
○ Deploying to RTF
39. Demo wrapup
● You saw:
○ How to locally encrypt property
○ How to test from Connector - and the pitfalls of doing so
○ Safely Hidden properties on CloudHub
○ Safely Hidden properties on RTF
○ Edge Security policy
○ API Manager policy
○ Custom policy for AI/ML solution
40. Trivia Question #2
What is the most secure way to ‘hide’ sensitive configuration properties?
A. Secure Configuration Properties
B. RTF Safely Hidden Properties
C. CloudHub Safely Hidden Properties
D. Continuous Development/Deployment injected properties
42. 42
● Used to protect sensitive information
● Format preserving
● Service must be deployed to RTF instance
● Reversible
● Vaultless
● Scalability
● Flexibility
● Format support
Tokenization
43. 43
● Can be applied to any RTF deployed proxy
● Replaces sensitive data in the payload with
tokens
● Configurable
○ Selector expression
○ Request or Response
○ Formats
Tokenization Policy
45. Demo!
● What you will see:
○ Tokenization and Detokenization Policies
● What you won’t see:
○ Tokenization service deployment
○ Token format configurations
46. Trivia Question #3
Which of the following is true?
A. The tokenization is reversible but requires a lookup table
B. Memory requirements increase with number of tokens provisioned
C. RTF installations include the tokenization service by default
D. Portions of the original sensitive data can be preserved
48. 48
● Share:
○ Tweet using the hashtag #MuleSoftMeetups
○ Invite your network to join: https://meetups.mulesoft.com/denver
● Feedback:
○ Complete the Meetup survey, provide feedback, and suggest topics for upcoming events
○ Contact MuleSoft at meetups@mulesoft.com for ways to improve the program
What’s next?
49. 49
● Next Meetup: July 28, 2021. Site TBD. We will make every effort to
make this an in-person meetup based on current local and CDC
guidance.
● Future Meetup (tentative) schedule:
○ Sep 22 (Site TBD based on local guidance)
○ Nov 10 (Site TBD based on local guidance)
● We are looking for topic suggestions:
○ DataWeave (of course!)
○ Other suggestions:
■ Logging revisited
■ MuleSoft Composer for Salesforce
■ Others???
● We’re also looking for speakers - please contact us if you are
interested
Denver Meetups 2021