On-demand recording: https://nginx.webex.com/nginx/lsr.php?RCID=e62ece89fb21133d312f02af7be8e2c0
The NGINX Plus with ModSecurity WAF (web application firewall) protects your applications from a wide variety of threats, including DDoS and Layer 7 attacks. Improve application uptime, block malicious users, and log crucial data about suspicious transactions with this new offering from NGINX.
The NGINX Plus with ModSecurity WAF is built on a new architecture, offered first to NGINX Plus customers. Our new WAF will help you protect your site against top threats and comply with PCI-DSS Requirement 6.6.
Join us in this webinar to learn:
* The top security attacks against websites
* How much attacks are increasing and why
* How a WAF adds to your site's security protection
* How NGINX Plus with ModSecurity WAF works, in a live demo
Improve App Performance & Reliability with NGINX AmplifyNGINX, Inc.
Watch on-demand: www.nginx.com/resources/webinars/amplify-launched-as-public-beta
Gain greater visibility and control for your applications and infrastructure. NGINX Amplify is a new diagnostic tool designed specifically to monitor and troubleshoot NGINX and the applications it delivers. This webinar will introduce you to this new product and show you how to use it to make immediate improvements to your applications. See NGINX Amplify’s powerful features, including a customizable analytics dashboard, diagnostics of your app performance and NGINX configurations, and a configurable alerting system.
With NGINX Amplify you get deep diagnostics and actionable insights to improve the performance and security of your apps. Join this webinar to learn how you can use NGINX Amplify to:
* Begin understanding and improving application performance in as little as five minutes
* Learn now to analyze your NGINX configuration and improve performance and security
* See how NGINX Amplify lets you visualize key metrics from multiple NGINX instances
* Configure smart alerts that notify you when parts of your system need attention
* Augment your existing APM tools with dedicated and much more comprehensive NGINX analytics
Monitoring Highly Dynamic and Distributed Systems with NGINX AmplifyNGINX, Inc.
On-demand webinar: nginx.com/resources/webinars/monitoring-highly-dynamic-distributed-services-nginx-amplify
In this webinar, we describe the challenges of monitoring highly dynamic and distributed systems, and show how NGINX Amplify can help.
Cloud services, containers, and microservices provide flexibility of deployment, but conventional monitoring tools can't always keep up with rapidly changing systems. NGINX Amplify helps you overcome challenges in collecting logs and metrics and acting on the results.
Join us in this webinar to discover:
- The specific characteristics of distributed systems, immutable infrastructure, and systems that use a microservices architecture.
- Why NGINX and NGINX Plus are the go-to application delivery solutions with popular with users of container technologies such as Docker and cloud technologies such as AWS.
- What special challenges you may find in monitoring and managing containerized, distributed, and microservices-based systems.
- How NGINX Amplify overcomes monitoring and management challenges.
MRA AMA Part 8: Secure Inter-Service CommunicationNGINX, Inc.
On-demand version can be accessed at https://www.nginx.com/resources/webinars/microservices-secure-inter-service-communication/
Microservices architectures move inter-service communication from computer memory onto local area networks or even the Internet, making security a critical concern. The microservices network architectures designed by NGINX, freely available on GitHub, include two different implementations of a service mesh; the Router Mesh model and the Fabric Model, which features secure communication between microservices inside out.
In this webinar we discuss how various approaches to securing your applications differ, starting with the NGINX Microservices Reference Architecture (MRA). We show how the MRA compares to other microservices architectures such as Istio and linkerd.
3 Ways to Automate App Deployments with NGINXNGINX, Inc.
Watch on demand: www.nginx.com/resources/webinars/three-ways-to-automate-with-nginx-and-nginx-plus
The process of deploying applications in many organizations today is slowed down by manual processes. These manual processes create extra work for developers and operations teams, cause unnecessary delays, and increase the time it takes to get new features and critical bug and security fixes into the hands of customers. Automating common tasks – using tools, scripts, and other techniques – is a great way to improve operational efficiency and accelerate the rollout of new features and apps.
The potential improvements of automation are impressive. With the proper components in place, some companies have been able to deploy new code to production more than 50 times per day, creating a more stable application and increasing customer satisfaction.
High-performing DevOps teams turn to open source NGINX and NGINX Plus to build fully automated, self-service pipelines that developers use to effortlessly push out new features, security patches, bug fixes, and whole new applications to production with no manual intervention.
* Best practices for continuous delivery and automated deployments
* How to quickly and easily deploy new features or bug fixes into production with the push of a button
* Techniques to orchestrate and manage your NGINX-powered infrastructure using tools like Ansible, Chef, and Puppet
* How to use Jenkins to modify your NGINX configuration
* Methods to automate the discovery of new services using NGINX Plus
NGINX Microservices Reference Architecture: Ask Me AnythingNGINX, Inc.
On-demand recording: http://bit.ly/2mg6NZm
The NGINX Microservices Reference Architecture (MRA) is getting big interest from software developers. Our recent webinar on Three Models in the MRA was one of our most popular ever.
Now, microservices experts Chris Stetson and Ben Horowitz answer all your questions in this Ask Me Anything (AMA) session. Chris and Ben have helped to build Sirius Satellite Radio, Intel.com, Lexus.com, Microsoft.com, Visa.com, and many more. So come ready to ask Chris and Ben anything about the Microservices Reference Architecture!
During this webinar, Chris and Ben answer questions about:
- Which MRA model is best for your application
- What problems microservices and the MRA solve
- How to apply the MRA in your organization
- What challenges others are facing
Reduce IT Spend with Software Load BalancingNGINX, Inc.
Learn how you can replace your hardware load balancers with NGINX Plus, a complete software application delivery platform for the modern web. Moving to NGINX Plus not only saves you money, but provides the flexibility, performance, and scalability that only software can provide.
MRA AMA: Ingenious: The Journey to Service Mesh using a Microservices Demo AppNGINX, Inc.
On-demand Link: https://www.nginx.com/resources/webinars/microservices-ingenious-journey-service-mesh-demo-app/
In this webinar, we discuss how Ingenious is (mostly) the same, but also the differences in its code, features, and runtime behavior, as it’s implemented in various architectural models. You then get a chance to ask us, well, anything about microservices, the MRA, and service mesh architectures.
Join this webinar to learn"
- The reasons for choosing one architecture over others for your app
icon
- How apps can maximize architecture-independence, giving you maximum flexibility in development and deployment
icon
- How the features, performance, stability, and reliability of the Ingenious demo app benefit from various microservices architectures
icon
How to secure the Ingenious app, and your own apps, across different architectures
MRA AMA Part 7: The Circuit Breaker PatternNGINX, Inc.
On demand version can be accessed at https://www.nginx.com/resources/webinars/mra-ama-part-7-circuit-breaker-pattern/
The circuit breaker pattern is an emerging standard for use in app development and deployment, particularly with microservices apps. Popular architectures such as Istio and linkerd use the circuit breaker pattern for resiliency. This pattern is an important component in what can become fully resilient, “self-healing” application architectures.
In this webinar, we describe the use of the circuit breaker pattern with NGINX Plus, which has specific features that support the use of this pattern, and in the NGINX Microservices Reference Architecture. Attendees of the live webinar will have the opportunity to ask questions.
Improve App Performance & Reliability with NGINX AmplifyNGINX, Inc.
Watch on-demand: www.nginx.com/resources/webinars/amplify-launched-as-public-beta
Gain greater visibility and control for your applications and infrastructure. NGINX Amplify is a new diagnostic tool designed specifically to monitor and troubleshoot NGINX and the applications it delivers. This webinar will introduce you to this new product and show you how to use it to make immediate improvements to your applications. See NGINX Amplify’s powerful features, including a customizable analytics dashboard, diagnostics of your app performance and NGINX configurations, and a configurable alerting system.
With NGINX Amplify you get deep diagnostics and actionable insights to improve the performance and security of your apps. Join this webinar to learn how you can use NGINX Amplify to:
* Begin understanding and improving application performance in as little as five minutes
* Learn now to analyze your NGINX configuration and improve performance and security
* See how NGINX Amplify lets you visualize key metrics from multiple NGINX instances
* Configure smart alerts that notify you when parts of your system need attention
* Augment your existing APM tools with dedicated and much more comprehensive NGINX analytics
Monitoring Highly Dynamic and Distributed Systems with NGINX AmplifyNGINX, Inc.
On-demand webinar: nginx.com/resources/webinars/monitoring-highly-dynamic-distributed-services-nginx-amplify
In this webinar, we describe the challenges of monitoring highly dynamic and distributed systems, and show how NGINX Amplify can help.
Cloud services, containers, and microservices provide flexibility of deployment, but conventional monitoring tools can't always keep up with rapidly changing systems. NGINX Amplify helps you overcome challenges in collecting logs and metrics and acting on the results.
Join us in this webinar to discover:
- The specific characteristics of distributed systems, immutable infrastructure, and systems that use a microservices architecture.
- Why NGINX and NGINX Plus are the go-to application delivery solutions with popular with users of container technologies such as Docker and cloud technologies such as AWS.
- What special challenges you may find in monitoring and managing containerized, distributed, and microservices-based systems.
- How NGINX Amplify overcomes monitoring and management challenges.
MRA AMA Part 8: Secure Inter-Service CommunicationNGINX, Inc.
On-demand version can be accessed at https://www.nginx.com/resources/webinars/microservices-secure-inter-service-communication/
Microservices architectures move inter-service communication from computer memory onto local area networks or even the Internet, making security a critical concern. The microservices network architectures designed by NGINX, freely available on GitHub, include two different implementations of a service mesh; the Router Mesh model and the Fabric Model, which features secure communication between microservices inside out.
In this webinar we discuss how various approaches to securing your applications differ, starting with the NGINX Microservices Reference Architecture (MRA). We show how the MRA compares to other microservices architectures such as Istio and linkerd.
3 Ways to Automate App Deployments with NGINXNGINX, Inc.
Watch on demand: www.nginx.com/resources/webinars/three-ways-to-automate-with-nginx-and-nginx-plus
The process of deploying applications in many organizations today is slowed down by manual processes. These manual processes create extra work for developers and operations teams, cause unnecessary delays, and increase the time it takes to get new features and critical bug and security fixes into the hands of customers. Automating common tasks – using tools, scripts, and other techniques – is a great way to improve operational efficiency and accelerate the rollout of new features and apps.
The potential improvements of automation are impressive. With the proper components in place, some companies have been able to deploy new code to production more than 50 times per day, creating a more stable application and increasing customer satisfaction.
High-performing DevOps teams turn to open source NGINX and NGINX Plus to build fully automated, self-service pipelines that developers use to effortlessly push out new features, security patches, bug fixes, and whole new applications to production with no manual intervention.
* Best practices for continuous delivery and automated deployments
* How to quickly and easily deploy new features or bug fixes into production with the push of a button
* Techniques to orchestrate and manage your NGINX-powered infrastructure using tools like Ansible, Chef, and Puppet
* How to use Jenkins to modify your NGINX configuration
* Methods to automate the discovery of new services using NGINX Plus
NGINX Microservices Reference Architecture: Ask Me AnythingNGINX, Inc.
On-demand recording: http://bit.ly/2mg6NZm
The NGINX Microservices Reference Architecture (MRA) is getting big interest from software developers. Our recent webinar on Three Models in the MRA was one of our most popular ever.
Now, microservices experts Chris Stetson and Ben Horowitz answer all your questions in this Ask Me Anything (AMA) session. Chris and Ben have helped to build Sirius Satellite Radio, Intel.com, Lexus.com, Microsoft.com, Visa.com, and many more. So come ready to ask Chris and Ben anything about the Microservices Reference Architecture!
During this webinar, Chris and Ben answer questions about:
- Which MRA model is best for your application
- What problems microservices and the MRA solve
- How to apply the MRA in your organization
- What challenges others are facing
Reduce IT Spend with Software Load BalancingNGINX, Inc.
Learn how you can replace your hardware load balancers with NGINX Plus, a complete software application delivery platform for the modern web. Moving to NGINX Plus not only saves you money, but provides the flexibility, performance, and scalability that only software can provide.
MRA AMA: Ingenious: The Journey to Service Mesh using a Microservices Demo AppNGINX, Inc.
On-demand Link: https://www.nginx.com/resources/webinars/microservices-ingenious-journey-service-mesh-demo-app/
In this webinar, we discuss how Ingenious is (mostly) the same, but also the differences in its code, features, and runtime behavior, as it’s implemented in various architectural models. You then get a chance to ask us, well, anything about microservices, the MRA, and service mesh architectures.
Join this webinar to learn"
- The reasons for choosing one architecture over others for your app
icon
- How apps can maximize architecture-independence, giving you maximum flexibility in development and deployment
icon
- How the features, performance, stability, and reliability of the Ingenious demo app benefit from various microservices architectures
icon
How to secure the Ingenious app, and your own apps, across different architectures
MRA AMA Part 7: The Circuit Breaker PatternNGINX, Inc.
On demand version can be accessed at https://www.nginx.com/resources/webinars/mra-ama-part-7-circuit-breaker-pattern/
The circuit breaker pattern is an emerging standard for use in app development and deployment, particularly with microservices apps. Popular architectures such as Istio and linkerd use the circuit breaker pattern for resiliency. This pattern is an important component in what can become fully resilient, “self-healing” application architectures.
In this webinar, we describe the use of the circuit breaker pattern with NGINX Plus, which has specific features that support the use of this pattern, and in the NGINX Microservices Reference Architecture. Attendees of the live webinar will have the opportunity to ask questions.
Microservices and Container Management with NGINX Plus and Mesosphere DC/OSNGINX, Inc.
Webinar recording: nginx.com/resources/webinars/microservices-container-management-nginx-plus-mesosphere-dcos
NGINX and NGINX Plus are emerging as the standard for connecting, securing, caching, and scaling microservices. We hope you found it valuable to learn how to use Mesosphere DC/OS and containers, such as Docker containers, to create and run microservices applications in an NGINX Plus environment.
Simplify Microservices with the NGINX Application PlatformNGINX, Inc.
Learn how we discuss our vision for reducing complexity and building microservices applications with the NGINX Application Platform.
On-demand recording: https://www.nginx.com/resources/webinars/updating-nginx-application-platform/
- Our vision for building microservices applications with the NGINX Application Platform
icon
- How the NGINX Application Platform is helping our customers reduce cost and complexity
icon
- How the NGINX Application Platform will help you consolidate multiple tools and solutions
icon
- The latest updates about products in the NGINX Application Platform
About the webinar
At NGINX we help simplify the journey to microservices. Many of our customers would love to migrate to microservices, but have been held back by existing, complex application infrastructures with years of technical debt. When we talk to these companies, they’re surprised by how much they can simplify their infrastructure by consolidating common functions onto NGINX Plus.
With the NGINX Application Platform, we can collapse ten disparate functions into a single product suite. This includes web server, load balancer, reverse proxy, content cache, application server, web application firewall (WAF), API gateway, Kubernetes ingress controller, sidecar proxy, and service mesh controller. Using the NGINX Application Platform, we are helping our customers reduce complexity and begin migrating to a modern, microservices-based architecture.
On-demand recording: https://www.nginx.com/resources/webinars/mra-ama-part-6-service-mesh-models/
Speakers:
Charles Pretzer
Technical Architect
NGINX, Inc.
Floyd Smith
Director of Content Marketing
NGINX, Inc.
About the webinar:
In this webinar, two models of the NGINX Microservices Reference Architecture, the Router Mesh Model and the Fabric Model, are shown as successively more capable implementations of a service mesh architecture. We compare the MRA models to Istio, linkerd, and other service mesh architectures, and show how the NGINX Kubernetes Ingress Controller allows direct use of these other architectures. Attendees of the live webinar will have the opportunity to ask questions.
Service mesh models are an emerging standard for microservices development and deployment. Popular architectures such as Istio and linkerd use a service mesh approach, including attributes such as load balancing capability, support for authorization and authentication, and use of the circuit breaker model for resiliency.
Watch this webinar to learn:
- Key problems solved by using a service mesh model for microservices
_ How different service mesh architectures compare to each other
- How to use NGINX service mesh models - the Router Mesh Model and Fabric Model of the MRA
- How the Kubernetes Ingress Controller enables the use of NGINX in Istio, linkerd, and other service mesh models
NGINX powers over half of the world’s busiest sites and applications. Attend this NGINX Basics webinar to hear answers to questions about NGINX and NGINX Plus. https://www.nginx.com/resources/webinars/nginx-basics-ask-anything-emea/
Watch this webinar to:
- The answers to your questions on NGINX
- About how others use NGINX and NGINX Plus
- About common application delivery design patterns
- Key insights from the presenter' more than 20 years of industry experience
NGINX, Istio, and the Move to Microservices and Service MeshNGINX, Inc.
On-demand recording: https://www.nginx.com/resources/webinars/istio-move-to-microservices-service-mesh/
About the webinar
NGINX is widely known, used, and trusted for a variety of purposes. NGINX works as a reliable, high-performance web server, reverse proxy server, and load balancer. NGINX is also a widely used microservices hub, an Ingress controller for Kubernetes, and a sidecar proxy in the Istio service mesh.
In this webinar, we’ll describe the move to microservices, the crucial role that NGINX has already played, and a range of architectural options that organizations have for their microservices apps, including three progressively complex models in the NGINX Microservices Reference Architecture. We’ll then introduce the emergence of Kubernetes as a container orchestration framework, the use of service mesh architectures, and the design of Istio. We’ll finish by showing how NGINX Open Source and NGINX Plus can be used as the sidecar proxy in an Istio service mesh, bringing greater reliability and capability to your service mesh application.
NGINX Controller: Configuration, Management, and Troubleshooting at Scale – EMEANGINX, Inc.
Watch this webinar and learn how NGINX Controller reduces complexity and achieves significant time & cost savings. Configure, manage, and troubleshoot multiple NGINX Plus instances at scale across both on-premise and public cloud environments. Get an overview and demo of Controller.
Watch this webinar to learn:
- How to achieve significant time and cost savings by using Controller to manage multiple NGINX instances
- How to boost developer productivity by enabling teams to deploy new applications faster with policy-driven management
- How you can meet and exceed SLAs by finding the root cause of performance issues and troubleshooting them quickly
- The benefits of seamlessly incorporating NGINX Plus into your existing monitoring framework with available integrations
https://www.nginx.com/resources/webinars/nginx-controller-configuration-management-troubleshooting-at-scale-emea/
Deploying NGINX Plus & Kubernetes on Google Cloud PlatformNGINX, Inc.
Watch webinar on-demand: www.nginx.com/resources/webinars/google-cloud-platform-nginx-kubernetes
Moving to the cloud and transitioning to containerized deployments are top of mind for many enterprises as they build applications to meet quickly increasing user demands. The cloud offers the flexibility, scalability, reliability, and security that enterprise applications demand, and by moving services, and all their dependencies, to containers, developers and engineers win the flexibility and freedom to easily scale and secure their applications.
Over the past few years a number of tools have emerged to make it easier than ever to run applications in the cloud and manage rapidly growing numbers of containers. Kubernetes and NGINX are two of the leading tools used in the cloud, and they are commonly used together to quickly and easily deploy and scale applications.
Join us in this webinar co-hosted by Sandeep Dinesh, Developer Advocate, of Google’s Cloud Platform team, and Floyd Smith of NGINX to learn:
How to use NGINX for internal and external load balancing of applications on Google Compute Engine.
Benefits of using container orchestration systems like Kubernetes.
How to load balance Kubernetes services with NGINX Plus on Google Container Engine.
Webinar recording: www.nginx.com/resources/webinars/how-to-adopt-infrastructure-as-code
Modern applications are increasingly deployed in containers and virtual machines on clusters of dozens, hundreds, and even thousands of servers – in private data centers and in the public cloud. Managing complex applications like these puts more demands than ever on infrastructure and the teams managing it. The traditional ways of manually adding, configuring, and modifying infrastructure no longer scale.
Infrastructure as Code is a new approach to managing IT infrastructure where you treat infrastructure as if it were software and data, using modern tools like version control systems and deployment orchestration. Based on software development and DevOps best practices, Infrastructure as Code makes deployment and infrastructure management more efficient than ever. Anyone who works with IT infrastructure – system administrators, infrastructure engineers, DevOps engineers, architects, software developers, and others – can implement changes more quickly, easily, and reliably.
Join us for this webinar co-hosted by Kief Morris, Cloud Practice Lead at ThoughtWorks and author of Infrastructure as Code, and Floyd Smith of NGINX, Inc. You’ll learn:
* Why Infrastructure as Code is a better approach for managing modern infrastructure
* Challenges that Infrastructure as Code helps address
* Practical examples of using software to control infrastructure
* How NGINX Plus can help your Infrastructure as Code efforts
The Heartbleed vulnerability was an information disclosure bug in OpenSSL unveiled to the world in April 2014. This talk will describe the impact of this bug on the Internet and CloudFlare's part in contributing to the research and education of the public about this issue.
Flawless Application Delivery with NGINX PlusPeter Guagenti
This deck is a simple primer on the importance of web application uptime and performance today, and outlines the fundamental building blocks of how to achieve performance, reliability, security, and scale for your apps and sites. It provides a checklist of considerations for deploying your application, including specific highlights of how NGINX's application delivery software supports these capabilities. This material is intended for developers and application owners who are relatively new to application delivery techniques, but are looking to understand how to improve the user experience and revenue generation from their applications.
Using an API Gateway for Microservices (APAC Webinar)NGINX, Inc.
NGINX Technical Solutions Architect, Sean Maritz, describes the advantages of using an API gateway and how it fits in your journey to microservices. He'll also describe which microservices and service mesh architectures can make use of an API gateway, and which can't. https://www.nginx.com/resources/webinars/using-an-api-gateway-for-microservices-apac/
NGINX Controller: Configuration, Management, and Troubleshooting at Scale NGINX, Inc.
Speakers:
Alan Murphy, Regional Solution Architect for APAC NGINX, Inc.
Karthik Krishnaswamy, Senior Product Marketing Manager at NGINX, Inc.
About the webinar
Deploying and managing applications at scale always presents challenges. Infrastructure has to be configured and provisioned quickly across multiple public and private clouds. There’s ever-increasing pressure to maintain reliability, performance, and availability of business applications across this disparate infrastructure. Easy workflows for infrastructure and DevOps, as well as self-service management capabilities for developers, are needed to accelerate application deployment. The result? Enterprises are able to innovate and bring apps to market faster.
That’s where NGINX Controller comes in. Controller helps users manage multiple NGINX instances at scale with centralized configuration, monitoring, alerting, and troubleshooting.
What is Nginx and Why You Should to Use it with Wordpress HostingWPSFO Meetup Group
Floyd Smith and the team from NGINX presented at the Wordpress San Francisco MeetUp group in June 2016. In this presentation, he illustrated how NGINX can vastly improve your Wordpress hosting performance.
Watch the webinar on-demand: nginx.com/resources/webinars/whats-new-in-nginx-plus-r9
Achieve flawless delivery of all your applications with NGINX Plus R9. The latest version of our complete application delivery platform provides two significant new features: the ability to dynamically install a rich array of modules to NGINX Plus and commercially-supported UDP load balancing.
This talk is about the creation of a new security tool, Red October. Red October can be used to enforce the two-person rule for access to critical data, helping keep company data protected from insider threats.
The security industry tends to be less open about the details of how their software works than other parts of the software industry. This project was created to tackle the practical challenges of traditional security compliance, but inspired by an open source mentality. By taking a vague set of regulatory requirements we devised a user-friendly tool that solves a broader problem that is an issue for many small organizations.
This talk will teach people about cryptography and division of responsibility in key management, a very important consideration when moving a business to the cloud. It will also help show where to draw the line between using existing cryptographic and security mechanisms, and building your own.
This presentation discusses the various types of distributed denial of service attacks launched worldwide by botnets in 2014. From DNS to Layer7 attacks, this deck provides an expert analysis of botnet breakdowns by-the-numbers including where the majority of botnets came from regionally, what attack trends were most popular, and when these attacks occurred.
Supercharge Application Delivery to Satisfy UsersNGINX, Inc.
Users expect websites and applications to be quick and reliable. A slow user experience can have a significant impact on your business. Join us for this webinar where we will show you a number of ways you can use NGINX and other tools and techniques to supercharge your application delivery, including:
- Client Caching
- Content Delivery Networks (CDN)
- OCSP stapling
- Dynamic Content Caching
View full webinar on demand at http://bit.ly/nginxsupercharge
Latest Trends in Web Application SecurityCloudflare
Hear the talk on YouTube: https://www.youtube.com/watch?v=lp4dQTSH130
Web Application Firewall security is evolving. Join John Graham-Cumming, CTO of CloudFlare, as he shares the latest trends and changes in Web Application Security. This talk will give details of the big trends in web application security seen in 2015, and how to defend against these threats and talk about the evolving web application security landscape.
The 3 Models in the NGINX Microservices Reference ArchitectureNGINX, Inc.
On-demand recording: https://nginx.webex.com/nginx/lsr.php?RCID=82f9c75402528464d3625813e313f8a4
The new NGINX Microservices Reference Architecture (MRA) goes into depth on the entire architecture. Join this webinar to explore all three models in the MRA: the Proxy Model, the Router Mesh Model, and the Fabric Model.
The Proxy Model gives you a leg up into microservices, including support for API gateways. The Router Mesh Model adds power, with a second server exclusively for microservices support. And the Fabric Model pairs an NGINX Plus instance with every microservice instance for secure SSL/TLS communications between service instances.
Check out this webinar to learn about building a secure and scalable microservices app:
* When to take the leap into deploying microservices
* Why you should consider adopting the MRA for your app
* How to choose a model that works for your app
* How to start the process of converting a monolith to microservices
Load Balancing Apps in Docker Swarm with NGINXNGINX, Inc.
On-demand webinar recording: http://bit.ly/2mRjk2g
Docker and other container technologies continue to gain in popularity. We recently surveyed the broad community of NGINX and NGINX Plus users and found that two-thirds of organizations are either investigating containers, using them in development, or using them in production. Why? Because abstracting your applications from the underlying infrastructure makes developing, distributing, and running software simpler, faster, and more robust than ever before.
But when you move from running your app in a development environment to deploying containers in production, you face new challenges – such as how to effectively run and scale an application across multiple hosts with the performance and uptime that your customers demand.
The latest Docker release, 1.12, supports multihost container orchestration, which simplifies deployment and management of containers across a cluster of Docker hosts. In a complex environment like this, load balancing plays an essential part in delivering your container-based application with reliability and high performance.
Join us in this webinar to learn:
* The basic built-in load balancing options available in Docker Swarm Mode
* The pros and cons of moving to an advanced load balancer like NGINX
* How to integrate NGINX and NGINX Plus with Swarm Mode to provide an advanced load-balancing solution for a cluster with orchestration
* How to scale your Docker-based application with Swarm Mode and NGINX Plus
Microservices and Container Management with NGINX Plus and Mesosphere DC/OSNGINX, Inc.
Webinar recording: nginx.com/resources/webinars/microservices-container-management-nginx-plus-mesosphere-dcos
NGINX and NGINX Plus are emerging as the standard for connecting, securing, caching, and scaling microservices. We hope you found it valuable to learn how to use Mesosphere DC/OS and containers, such as Docker containers, to create and run microservices applications in an NGINX Plus environment.
Simplify Microservices with the NGINX Application PlatformNGINX, Inc.
Learn how we discuss our vision for reducing complexity and building microservices applications with the NGINX Application Platform.
On-demand recording: https://www.nginx.com/resources/webinars/updating-nginx-application-platform/
- Our vision for building microservices applications with the NGINX Application Platform
icon
- How the NGINX Application Platform is helping our customers reduce cost and complexity
icon
- How the NGINX Application Platform will help you consolidate multiple tools and solutions
icon
- The latest updates about products in the NGINX Application Platform
About the webinar
At NGINX we help simplify the journey to microservices. Many of our customers would love to migrate to microservices, but have been held back by existing, complex application infrastructures with years of technical debt. When we talk to these companies, they’re surprised by how much they can simplify their infrastructure by consolidating common functions onto NGINX Plus.
With the NGINX Application Platform, we can collapse ten disparate functions into a single product suite. This includes web server, load balancer, reverse proxy, content cache, application server, web application firewall (WAF), API gateway, Kubernetes ingress controller, sidecar proxy, and service mesh controller. Using the NGINX Application Platform, we are helping our customers reduce complexity and begin migrating to a modern, microservices-based architecture.
On-demand recording: https://www.nginx.com/resources/webinars/mra-ama-part-6-service-mesh-models/
Speakers:
Charles Pretzer
Technical Architect
NGINX, Inc.
Floyd Smith
Director of Content Marketing
NGINX, Inc.
About the webinar:
In this webinar, two models of the NGINX Microservices Reference Architecture, the Router Mesh Model and the Fabric Model, are shown as successively more capable implementations of a service mesh architecture. We compare the MRA models to Istio, linkerd, and other service mesh architectures, and show how the NGINX Kubernetes Ingress Controller allows direct use of these other architectures. Attendees of the live webinar will have the opportunity to ask questions.
Service mesh models are an emerging standard for microservices development and deployment. Popular architectures such as Istio and linkerd use a service mesh approach, including attributes such as load balancing capability, support for authorization and authentication, and use of the circuit breaker model for resiliency.
Watch this webinar to learn:
- Key problems solved by using a service mesh model for microservices
_ How different service mesh architectures compare to each other
- How to use NGINX service mesh models - the Router Mesh Model and Fabric Model of the MRA
- How the Kubernetes Ingress Controller enables the use of NGINX in Istio, linkerd, and other service mesh models
NGINX powers over half of the world’s busiest sites and applications. Attend this NGINX Basics webinar to hear answers to questions about NGINX and NGINX Plus. https://www.nginx.com/resources/webinars/nginx-basics-ask-anything-emea/
Watch this webinar to:
- The answers to your questions on NGINX
- About how others use NGINX and NGINX Plus
- About common application delivery design patterns
- Key insights from the presenter' more than 20 years of industry experience
NGINX, Istio, and the Move to Microservices and Service MeshNGINX, Inc.
On-demand recording: https://www.nginx.com/resources/webinars/istio-move-to-microservices-service-mesh/
About the webinar
NGINX is widely known, used, and trusted for a variety of purposes. NGINX works as a reliable, high-performance web server, reverse proxy server, and load balancer. NGINX is also a widely used microservices hub, an Ingress controller for Kubernetes, and a sidecar proxy in the Istio service mesh.
In this webinar, we’ll describe the move to microservices, the crucial role that NGINX has already played, and a range of architectural options that organizations have for their microservices apps, including three progressively complex models in the NGINX Microservices Reference Architecture. We’ll then introduce the emergence of Kubernetes as a container orchestration framework, the use of service mesh architectures, and the design of Istio. We’ll finish by showing how NGINX Open Source and NGINX Plus can be used as the sidecar proxy in an Istio service mesh, bringing greater reliability and capability to your service mesh application.
NGINX Controller: Configuration, Management, and Troubleshooting at Scale – EMEANGINX, Inc.
Watch this webinar and learn how NGINX Controller reduces complexity and achieves significant time & cost savings. Configure, manage, and troubleshoot multiple NGINX Plus instances at scale across both on-premise and public cloud environments. Get an overview and demo of Controller.
Watch this webinar to learn:
- How to achieve significant time and cost savings by using Controller to manage multiple NGINX instances
- How to boost developer productivity by enabling teams to deploy new applications faster with policy-driven management
- How you can meet and exceed SLAs by finding the root cause of performance issues and troubleshooting them quickly
- The benefits of seamlessly incorporating NGINX Plus into your existing monitoring framework with available integrations
https://www.nginx.com/resources/webinars/nginx-controller-configuration-management-troubleshooting-at-scale-emea/
Deploying NGINX Plus & Kubernetes on Google Cloud PlatformNGINX, Inc.
Watch webinar on-demand: www.nginx.com/resources/webinars/google-cloud-platform-nginx-kubernetes
Moving to the cloud and transitioning to containerized deployments are top of mind for many enterprises as they build applications to meet quickly increasing user demands. The cloud offers the flexibility, scalability, reliability, and security that enterprise applications demand, and by moving services, and all their dependencies, to containers, developers and engineers win the flexibility and freedom to easily scale and secure their applications.
Over the past few years a number of tools have emerged to make it easier than ever to run applications in the cloud and manage rapidly growing numbers of containers. Kubernetes and NGINX are two of the leading tools used in the cloud, and they are commonly used together to quickly and easily deploy and scale applications.
Join us in this webinar co-hosted by Sandeep Dinesh, Developer Advocate, of Google’s Cloud Platform team, and Floyd Smith of NGINX to learn:
How to use NGINX for internal and external load balancing of applications on Google Compute Engine.
Benefits of using container orchestration systems like Kubernetes.
How to load balance Kubernetes services with NGINX Plus on Google Container Engine.
Webinar recording: www.nginx.com/resources/webinars/how-to-adopt-infrastructure-as-code
Modern applications are increasingly deployed in containers and virtual machines on clusters of dozens, hundreds, and even thousands of servers – in private data centers and in the public cloud. Managing complex applications like these puts more demands than ever on infrastructure and the teams managing it. The traditional ways of manually adding, configuring, and modifying infrastructure no longer scale.
Infrastructure as Code is a new approach to managing IT infrastructure where you treat infrastructure as if it were software and data, using modern tools like version control systems and deployment orchestration. Based on software development and DevOps best practices, Infrastructure as Code makes deployment and infrastructure management more efficient than ever. Anyone who works with IT infrastructure – system administrators, infrastructure engineers, DevOps engineers, architects, software developers, and others – can implement changes more quickly, easily, and reliably.
Join us for this webinar co-hosted by Kief Morris, Cloud Practice Lead at ThoughtWorks and author of Infrastructure as Code, and Floyd Smith of NGINX, Inc. You’ll learn:
* Why Infrastructure as Code is a better approach for managing modern infrastructure
* Challenges that Infrastructure as Code helps address
* Practical examples of using software to control infrastructure
* How NGINX Plus can help your Infrastructure as Code efforts
The Heartbleed vulnerability was an information disclosure bug in OpenSSL unveiled to the world in April 2014. This talk will describe the impact of this bug on the Internet and CloudFlare's part in contributing to the research and education of the public about this issue.
Flawless Application Delivery with NGINX PlusPeter Guagenti
This deck is a simple primer on the importance of web application uptime and performance today, and outlines the fundamental building blocks of how to achieve performance, reliability, security, and scale for your apps and sites. It provides a checklist of considerations for deploying your application, including specific highlights of how NGINX's application delivery software supports these capabilities. This material is intended for developers and application owners who are relatively new to application delivery techniques, but are looking to understand how to improve the user experience and revenue generation from their applications.
Using an API Gateway for Microservices (APAC Webinar)NGINX, Inc.
NGINX Technical Solutions Architect, Sean Maritz, describes the advantages of using an API gateway and how it fits in your journey to microservices. He'll also describe which microservices and service mesh architectures can make use of an API gateway, and which can't. https://www.nginx.com/resources/webinars/using-an-api-gateway-for-microservices-apac/
NGINX Controller: Configuration, Management, and Troubleshooting at Scale NGINX, Inc.
Speakers:
Alan Murphy, Regional Solution Architect for APAC NGINX, Inc.
Karthik Krishnaswamy, Senior Product Marketing Manager at NGINX, Inc.
About the webinar
Deploying and managing applications at scale always presents challenges. Infrastructure has to be configured and provisioned quickly across multiple public and private clouds. There’s ever-increasing pressure to maintain reliability, performance, and availability of business applications across this disparate infrastructure. Easy workflows for infrastructure and DevOps, as well as self-service management capabilities for developers, are needed to accelerate application deployment. The result? Enterprises are able to innovate and bring apps to market faster.
That’s where NGINX Controller comes in. Controller helps users manage multiple NGINX instances at scale with centralized configuration, monitoring, alerting, and troubleshooting.
What is Nginx and Why You Should to Use it with Wordpress HostingWPSFO Meetup Group
Floyd Smith and the team from NGINX presented at the Wordpress San Francisco MeetUp group in June 2016. In this presentation, he illustrated how NGINX can vastly improve your Wordpress hosting performance.
Watch the webinar on-demand: nginx.com/resources/webinars/whats-new-in-nginx-plus-r9
Achieve flawless delivery of all your applications with NGINX Plus R9. The latest version of our complete application delivery platform provides two significant new features: the ability to dynamically install a rich array of modules to NGINX Plus and commercially-supported UDP load balancing.
This talk is about the creation of a new security tool, Red October. Red October can be used to enforce the two-person rule for access to critical data, helping keep company data protected from insider threats.
The security industry tends to be less open about the details of how their software works than other parts of the software industry. This project was created to tackle the practical challenges of traditional security compliance, but inspired by an open source mentality. By taking a vague set of regulatory requirements we devised a user-friendly tool that solves a broader problem that is an issue for many small organizations.
This talk will teach people about cryptography and division of responsibility in key management, a very important consideration when moving a business to the cloud. It will also help show where to draw the line between using existing cryptographic and security mechanisms, and building your own.
This presentation discusses the various types of distributed denial of service attacks launched worldwide by botnets in 2014. From DNS to Layer7 attacks, this deck provides an expert analysis of botnet breakdowns by-the-numbers including where the majority of botnets came from regionally, what attack trends were most popular, and when these attacks occurred.
Supercharge Application Delivery to Satisfy UsersNGINX, Inc.
Users expect websites and applications to be quick and reliable. A slow user experience can have a significant impact on your business. Join us for this webinar where we will show you a number of ways you can use NGINX and other tools and techniques to supercharge your application delivery, including:
- Client Caching
- Content Delivery Networks (CDN)
- OCSP stapling
- Dynamic Content Caching
View full webinar on demand at http://bit.ly/nginxsupercharge
Latest Trends in Web Application SecurityCloudflare
Hear the talk on YouTube: https://www.youtube.com/watch?v=lp4dQTSH130
Web Application Firewall security is evolving. Join John Graham-Cumming, CTO of CloudFlare, as he shares the latest trends and changes in Web Application Security. This talk will give details of the big trends in web application security seen in 2015, and how to defend against these threats and talk about the evolving web application security landscape.
The 3 Models in the NGINX Microservices Reference ArchitectureNGINX, Inc.
On-demand recording: https://nginx.webex.com/nginx/lsr.php?RCID=82f9c75402528464d3625813e313f8a4
The new NGINX Microservices Reference Architecture (MRA) goes into depth on the entire architecture. Join this webinar to explore all three models in the MRA: the Proxy Model, the Router Mesh Model, and the Fabric Model.
The Proxy Model gives you a leg up into microservices, including support for API gateways. The Router Mesh Model adds power, with a second server exclusively for microservices support. And the Fabric Model pairs an NGINX Plus instance with every microservice instance for secure SSL/TLS communications between service instances.
Check out this webinar to learn about building a secure and scalable microservices app:
* When to take the leap into deploying microservices
* Why you should consider adopting the MRA for your app
* How to choose a model that works for your app
* How to start the process of converting a monolith to microservices
Load Balancing Apps in Docker Swarm with NGINXNGINX, Inc.
On-demand webinar recording: http://bit.ly/2mRjk2g
Docker and other container technologies continue to gain in popularity. We recently surveyed the broad community of NGINX and NGINX Plus users and found that two-thirds of organizations are either investigating containers, using them in development, or using them in production. Why? Because abstracting your applications from the underlying infrastructure makes developing, distributing, and running software simpler, faster, and more robust than ever before.
But when you move from running your app in a development environment to deploying containers in production, you face new challenges – such as how to effectively run and scale an application across multiple hosts with the performance and uptime that your customers demand.
The latest Docker release, 1.12, supports multihost container orchestration, which simplifies deployment and management of containers across a cluster of Docker hosts. In a complex environment like this, load balancing plays an essential part in delivering your container-based application with reliability and high performance.
Join us in this webinar to learn:
* The basic built-in load balancing options available in Docker Swarm Mode
* The pros and cons of moving to an advanced load balancer like NGINX
* How to integrate NGINX and NGINX Plus with Swarm Mode to provide an advanced load-balancing solution for a cluster with orchestration
* How to scale your Docker-based application with Swarm Mode and NGINX Plus
When dynamic becomes static - the next step in web caching techniquesWim Godden
Although tools like Varnish can improve performance and scalability for static sites, when user-specific content is needed, a hit to the PHP/Ruby/Python/.Net backend is still required, causing scalability issues. We’ll look at a brand-new Nginx module which implements an ultra-fast and scalable solution to this problem, changing the way developers think about designing sites with user-specific content.
NGINX for Application Delivery & AccelerationNGINX, Inc.
NGINX is an HTTP request and load balancing server that powers many of the world's busiest websites. Learn why NGINX is such a popular choice, and see how it improves the capacity of web applications through HTTP intelligence and caching.
Learn more at www.nginx.com.
Benchmarking NGINX for Accuracy and ResultsNGINX, Inc.
View full webinar on demand at http://bit.ly/nginxbenchmarking
Whether you’re doing performance testing or planning for infrastructure needs, benchmarking can be a big deal. Join us for this webinar where we cover NGINX benchmarking best practices, including:
- the test environment
- configuring NGINX
- using benchmarking tools
- and more!
You’ll learn how to approach doing benchmarks so that you obtain results that are more accurate, better understood, and do a better job of addressing the needs of your project.
Responsive Mit Irhem Webseiten (German Edition)Koombea
Responsive Mit Irhem Webseiten (German Edition)
Was ist responsive & warum? Welche Option sollten Sie wählen?
Warum brauchen wir performance? Optimierung für Performance
NGINX Amplify: Monitoring NGINX with Advanced Filters and Custom DashboardsNGINX, Inc.
On-demand recording: https://nginx.webex.com/nginx/lsr.php?RCID=4bcbaff57fd6a02e4b3ca249917d3a1f
NGINX Amplify is a new diagnostic tool that gives engineers and DevOps professionals visibility and control of NGINX instances and NGINX-delivered applications.
Our new product provides insights to help you quickly troubleshoot application health and performance issues within a highly customizable interface. In addition to NGINX metrics, NGINX Amplify provides configuration analysis and reports, configurable alerts, and system-level metrics.
Join us in this webinar to learn:
* How to quickly install the NGINX Amplify agent on your server or in a container
* How to build custom dashboards of metrics gathered from your NGINX instances
* How to use advanced filters to pinpoint performance issues
On-demand recording: https://nginx.webex.com/nginx/lsr.php?RCID=419169e2cde399547cdbcf947fa1b590
NGINX Plus Release 10 (R10) is one of the biggest releases of NGINX Plus in years. NGINX Plus extends open source NGINX with advanced functionality and award-winning support, providing customers with a complete application delivery solution. NGINX Plus R10 features cutting-edge capabilities in security, reverse proxying, and scriptability. The new features in R10 will help you take your NGINX Plus deployments to the next level.
The native JavaScript-like scripting language, nginScript, has been enhanced. You can now use sophisticated policies to manage, shape, and transform application traffic.
In addition, in this webinar with Owen Garrett, Head of Products at NGINX, you will learn about these great new features:
* ModSecurity WAF – The ModSecurity web application firewall (WAF), the Swiss Army® knife of security, has been ported to NGINX Plus. The ModSecurity WAF is now available as an option in our dynamic modules repository.
* JWT support – You can now offload authentication to NGINX Plus using the open JSON Web Tokens (JWT) standard.
* Dual ECC and RSA certificate support – Improve SSL/TLS performance with ECC certificates while maintaining backwards compatibility with RSA standards.
* Transparent proxy support – With IP transparency, backend servers can now "see" the client's IP address, enabling fast, direct server-client communications.
ModSecurity 3.0 and NGINX: Getting StartedNGINX, Inc.
On demand version can be accessed at https://www.nginx.com/resources/webinars/modsecurity-3-0-and-nginx-getting-started/
The long-awaited ModSecurity 3.0 is available now. ModSecurity 3.0 is a complete rewrite of ModSecurity, and is the first version to work natively with NGINX. ModSecurity 3.0 loads into NGINX as a dynamic module.
Watch this webinar to learn:
- A brief history of the ModSecurity project
- How ModSecurity stops Layer 7 attacks
- What’s changed with ModSecurity 3.0 and how it integrates with NGINX
- How to install and configure ModSecurity with both open source NGINX and NGINX Plus
ModSecurity 3.0 and NGINX: Getting Started - EMEANGINX, Inc.
On demand version can be accessed at https://www.nginx.com/resources/webinars/modsecurity-3-0-and-nginx-getting-started-emea/
The long-awaited ModSecurity 3.0 is available now. ModSecurity 3.0 is a complete rewrite of ModSecurity, and is the first version to work natively with NGINX. ModSecurity 3.0 loads into NGINX as a dynamic module.
Watch this webinar to learn:
- A brief history of the ModSecurity project
- How ModSecurity stops Layer 7 attacks
- What’s changed with ModSecurity 3.0 and how it integrates with NGINX
- How to install and configure ModSecurity with both open source NGINX and NGINX Plus
We are one of the top Cyber security training providers.
Cyber security includes both the technologies and processes used to protect digital devices and networks from digital attacks, hacking and unauthorised hacking.
There will be a 100% placement assistance after the completion of this course.
This talk revisits the 2016 Mirai attack which targeted IoT devices including IP cameras, WiFi-connected refrigerators, home routers, and more. The resulting botnet was used to attack Dyn’s DNS platform, which affected many websites including Twitter, SoundCloud, Airbnb, and Spotify.
You will learn and discuss the answers to these questions and more:
• What is the current state of Mirai and Mirai variants?
• What Distributed Denial of Service (DDoS) defenses do you have in place?
• How can you prepare to detect and defend against them botnet malware?
• What is recommended in the September 2018 NISTIR Draft,
Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks.
Compliance made easy. Pass your audits stress-free.AlgoSec
Don’t fail an audit ever again. Yes, it’s possible.
It doesn’t matter what regulation you are talking about, whether your own internal compliance standard or a common global framework such as PCI DSS, SOX, HIPPA, SWIFT, or even HKMA.
Zscaler ThreatLabz dissects the latest SSL security attacksZscaler
The occurrence of SSL-based threats are continuing to rise. Hackers are getting more and more creative in how they deliver threats, which creates new inspection challenges. Attend this webcast to discuss the latest attack trends, and best practices you can employ within your Zscaler installation to bolster your security.
Journey to the Cloud: Securing Your AWS Applications - April 2015Alert Logic
James Brown, Director of Cloud Computing & Security Architecture, Alert Logic covers:
• The shared security model: what security you are responsible for to protect your content, applications, systems and networks vs AWS.
• Overview of the OWASP Top 10 most critical web application security risks (such as SQL injections)
• Best practices for how to protect your environment from the latest threats
Cloud Security Engineering - Tools and TechniquesGokul Alex
Cloud Security Engineering Education Materials prepared by Gokul Alex. It covers the essential tools and techniques to protect cloud enterprise architectures and cloud information systems.
Web App Security Presentation by Ryan Holland - 05-31-2017TriNimbus
Web App Security - A presentation by Ryan Holland, Sr. Director, Cloud Architecture at Alert Logic for the Vancouver AWS User Group Meetup on May 31, 2017.
Yi-Lang Tsai - Cyber Security, Threat Hunting and Defence Challenge in Taiwan...REVULN
TWCSIRT is a full member of FIRST and mainly focuses on the protection of NARLabs, TANet and TWAREN. We are defense cyber-attack from internet and according to government policy to handling incident every day. I am a research fellow with National Center for High-performance Computing and lead cyber security team to operation security operation center to handling incident in Taiwan Academic Network.
In our research project from government, we are deployed the biggest honeynet in Taiwan and used over 6000 IP address to detection malicious network attack come from internet.
We have published our malware knowledge base to sharing malware samples and reports for many researchers, students, research center and sharing our data set for deep tracking about cyber security.
There are many new types of cyber-attack that’s is include ransomware, website mining, DDoS and hybrid malicious attack.
Main Points:
- What’s TWCSIRT Mission and Scope
- How to coordinate in National level with ISAC, CERT and SOC
- Cyber-attack and threat hunting in Taiwan Academic Network
- How to develop cyber security platform for incident handling
- How to do red team and blue team training by CDX
Azure 101: Shared responsibility in the Azure CloudPaulo Renato
Whether you’re working exclusively on Azure or with multiple cloud environments, there are certain things you should consider when moving assets to the public cloud. As with any cloud deployment, security is a top priority, and moving your workloads to the Azure cloud doesn’t mean you’re not responsible for the security of your operating system, applications, and data.
Building on the security of the Azure infrastructure, this shared security responsibility starts with making sure your environment is secure. In this session, we will discuss step-by-step what you need to do to secure access at the administrative, application and network layers.
Grab the Secure Mobile Application Development Reference here - http://www.denimgroup.com/know_artic_secure_mobile_application_development_reference.html
Are you looking to build a program to ensure maximum mobile security coverage?
If you are tasked with putting together a security testing program to address risk with internally developed mobile applications, there is no shortage of technical and process factors to consider. It is also critical to balance the security with a positive end-user experience, helping propel the overall brand forward - safely. Without proper mobile security, one significant loss can quickly destroy the trust foundation your company has worked years to craft.
This webinar will provide the security leader an overview of the challenges associated with mobile testing, certain technologies that one can use to identify mobile application vulnerabilities, and repeatable process strategies that will help build the foundation for a recurring testing program.
The session will provide attendees a broad understanding of mobile technologies, as well as a mobile testing launch checklist that will help your organization go from ground floor to a fully-functioning testing program in 30 days.
The session will also include:
An overview of the major mobile technologies and their defining attributes
An overview of how iOS and Android handle certain security issues differently via the Denim Group Mobile Development Reference Guide
An overview of a typical mobile application architecture and how it differs from a web application environment
How important web services are to a typical mobile architecture
The limitations of automated testing and how to augment security reviews to overcome testing gaps
How to make a program repeatable and economically feasible without disrupting the software development process
As presented on 1/31/2018 at Cisco NYC Security Open House. These slides describe how a proper Disaster Recovery infrastructure, with a proper an automated network integration can provide instant recovery from Ransomware attacks and can improve security of the production environment.
Secure Application Development in the Age of Continuous DeliveryTim Mackey
As delivered at LinuxCon and ContainerCon in Berlin 2016.
Traditionally, when datacenter operators talk about application security, they've tended to focus on issues related to key management, firewalls and data access. By contrast, application developers have a security focus which is more aligned with code analysis and fuzzing techniques.
The reality is, secure application deployment principles extend from the infrastructure layer through the application and include how the application is deployed. With the prevalence of continuous deployment of micro-services, it’s imperative to focus efforts on what attackers’ view as vulnerable; particularly in an environment where new exploits are being disclosed almost daily.
In this session we’ll present:
• How known vulnerabilities can make their way into production deployments
• How deployment of vulnerable code can be minimized
• How to determine the vulnerability status of a container
• How to determine the risk associated with a specific package
Similar to Secure Your Apps with NGINX Plus and the ModSecurity WAF (20)
Managing Kubernetes Cost and Performance with NGINX & KubecostNGINX, Inc.
Kubecost and NGINX have recently partnered together to provide a more comprehensive solution for managing cost and performance when deploying Kubernetes. The Kubecost platform helps organizations optimize and monitor their Kubernetes costs, while NGINX is a leading open source software web server, reverse proxy and ingress controller. Together, they offer a powerful combination of cost optimization and application delivery capabilities, enabling you to gain greater visibility into your Kubernetes environments and achieve better performance and efficiency.
On-Demand Link https://www.nginx.com/resources/webinars/managing-kubernetes-cost-performance-with-nginx-kubecost/
Manage Microservices Chaos and Complexity with ObservabilityNGINX, Inc.
Learn about the three principal classes of observability data, the importance of infrastructure and app alignment, and ways to start analyzing deep data.
Accelerate Microservices Deployments with AutomationNGINX, Inc.
Managing a microservice application means managing numerous moving parts, where changes to one container can have a negative impact on another and potentially bring down the entire application. With automation you can streamline the validation of containers and standardize deployment, and ensure your apps are updated correctly and securely. Join this session to learn:
• How to use GitHub Actions to streamline your processes
• About managing security
• Why automation simplifies quick recovery from failure
Easily View, Manage, and Scale Your App Security with F5 NGINXNGINX, Inc.
Organizations typically use between 200 and 1,000 applications, many of them public facing and a direct gateway to customers and their data. While these apps enable critical functions, they’re also a common target for bad actors. A web application firewall (WAF) is a critical tool for securing apps by providing protection, detection, and mitigation against vulnerabilities and attacks. However, WAFs can be difficult to maintain and manage at scale. In this webinar, we explore how centralized visibility and configuration management of WAFs can decrease risk and save time.
Keep Ahead of Evolving Cyberattacks with OPSWAT and F5 NGINXNGINX, Inc.
With advancing technology and the ever-evolving landscape of cybercrime, it is more important today than ever to reduce file-borne attacks, secure encrypted traffic, and protect your networks.
In this webinar, we discuss the latest developments in the threat landscape, why shared responsibility matters for critical infrastructure, and how you can mitigate future threat vectors with the F5 NGINX Plus Certified Module from OPSWAT.
Install and Configure NGINX Unit, the Universal Application, Web, and Proxy S...NGINX, Inc.
In this hands-on demo and lab, we take you step-by-step through installing NGINX Unit on a Linux system, then configuring it as an app server, web server, and reverse proxy. Following a short review of production features and demo of the lab environment, we let you loose in a disposable lab environment to try NGINX Unit for yourself. During the lab, we’re available online to answer questions or demo anything you might be stuck on.
Protecting Apps from Hacks in Kubernetes with NGINXNGINX, Inc.
Kubernetes has become the platform of choice for deploying modern applications. A Web Application Firewall (WAF) is the most common solution to providing run-time protection for applications (well, second most common, after blind -faith and protective amulets). The question is, how do you put a WAF in place for applications running on Kubernetes?
As for most IT questions, the obvious answer is, of course, “it depends.” But on what?
In this webinar, we look at how a WAF works, where to insert a WAF in your infrastructure, and the best way for a platform engineering team to create self-service WAF configuration on Kubernetes. We explore some sample configurations, and provide a demo of NGINX App Protect WAF in action.
Successfully Implement Your API Strategy with NGINXNGINX, Inc.
On-Demand Recording:
https://www.nginx.com/resources/webinars/successfully-implement-your-api-strategy-with-nginx/
About the Webinar
Cloud-native applications are distributed and decentralized by design, composed of dozens, hundreds, or even thousands of APIs connecting services deployed across cloud, on-premises, and edge environments. Without an effective API strategy in place, API sprawl quickly gets out-of-control and becomes unmanageable as the number of APIs in production outpaces your ability to govern and secure them.
In this webinar we explore trends that are accelerating API sprawl and look at some well-established best practices for managing, governing, and securing APIs in distributed environments. Our presenters also demo how to use API Connectivity Manager, part of F5 NGINX Management Suite, to streamline and accelerate your API operations.
Installing and Configuring NGINX Open SourceNGINX, Inc.
This pre-recorded 101-level lab and demo takes you from a “blank” LINUX system to a full-featured NGINX application delivery configuration for serving web content and load balancing.
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...Globus
The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.
Experience our free, in-depth three-part Tendenci Platform Corporate Membership Management workshop series! In Session 1 on May 14th, 2024, we began with an Introduction and Setup, mastering the configuration of your Corporate Membership Module settings to establish membership types, applications, and more. Then, on May 16th, 2024, in Session 2, we focused on binding individual members to a Corporate Membership and Corporate Reps, teaching you how to add individual members and assign Corporate Representatives to manage dues, renewals, and associated members. Finally, on May 28th, 2024, in Session 3, we covered questions and concerns, addressing any queries or issues you may have.
For more Tendenci AMS events, check out www.tendenci.com/events
AI Pilot Review: The World’s First Virtual Assistant Marketing SuiteGoogle
AI Pilot Review: The World’s First Virtual Assistant Marketing Suite
👉👉 Click Here To Get More Info 👇👇
https://sumonreview.com/ai-pilot-review/
AI Pilot Review: Key Features
✅Deploy AI expert bots in Any Niche With Just A Click
✅With one keyword, generate complete funnels, websites, landing pages, and more.
✅More than 85 AI features are included in the AI pilot.
✅No setup or configuration; use your voice (like Siri) to do whatever you want.
✅You Can Use AI Pilot To Create your version of AI Pilot And Charge People For It…
✅ZERO Manual Work With AI Pilot. Never write, Design, Or Code Again.
✅ZERO Limits On Features Or Usages
✅Use Our AI-powered Traffic To Get Hundreds Of Customers
✅No Complicated Setup: Get Up And Running In 2 Minutes
✅99.99% Up-Time Guaranteed
✅30 Days Money-Back Guarantee
✅ZERO Upfront Cost
See My Other Reviews Article:
(1) TubeTrivia AI Review: https://sumonreview.com/tubetrivia-ai-review
(2) SocioWave Review: https://sumonreview.com/sociowave-review
(3) AI Partner & Profit Review: https://sumonreview.com/ai-partner-profit-review
(4) AI Ebook Suite Review: https://sumonreview.com/ai-ebook-suite-review
Prosigns: Transforming Business with Tailored Technology SolutionsProsigns
Unlocking Business Potential: Tailored Technology Solutions by Prosigns
Discover how Prosigns, a leading technology solutions provider, partners with businesses to drive innovation and success. Our presentation showcases our comprehensive range of services, including custom software development, web and mobile app development, AI & ML solutions, blockchain integration, DevOps services, and Microsoft Dynamics 365 support.
Custom Software Development: Prosigns specializes in creating bespoke software solutions that cater to your unique business needs. Our team of experts works closely with you to understand your requirements and deliver tailor-made software that enhances efficiency and drives growth.
Web and Mobile App Development: From responsive websites to intuitive mobile applications, Prosigns develops cutting-edge solutions that engage users and deliver seamless experiences across devices.
AI & ML Solutions: Harnessing the power of Artificial Intelligence and Machine Learning, Prosigns provides smart solutions that automate processes, provide valuable insights, and drive informed decision-making.
Blockchain Integration: Prosigns offers comprehensive blockchain solutions, including development, integration, and consulting services, enabling businesses to leverage blockchain technology for enhanced security, transparency, and efficiency.
DevOps Services: Prosigns' DevOps services streamline development and operations processes, ensuring faster and more reliable software delivery through automation and continuous integration.
Microsoft Dynamics 365 Support: Prosigns provides comprehensive support and maintenance services for Microsoft Dynamics 365, ensuring your system is always up-to-date, secure, and running smoothly.
Learn how our collaborative approach and dedication to excellence help businesses achieve their goals and stay ahead in today's digital landscape. From concept to deployment, Prosigns is your trusted partner for transforming ideas into reality and unlocking the full potential of your business.
Join us on a journey of innovation and growth. Let's partner for success with Prosigns.
Quarkus Hidden and Forbidden ExtensionsMax Andersen
Quarkus has a vast extension ecosystem and is known for its subsonic and subatomic feature set. Some of these features are not as well known, and some extensions are less talked about, but that does not make them less interesting - quite the opposite.
Come join this talk to see some tips and tricks for using Quarkus and some of the lesser known features, extensions and development techniques.
Field Employee Tracking System| MiTrack App| Best Employee Tracking Solution|...informapgpstrackings
Keep tabs on your field staff effortlessly with Informap Technology Centre LLC. Real-time tracking, task assignment, and smart features for efficient management. Request a live demo today!
For more details, visit us : https://informapuae.com/field-staff-tracking/
Unleash Unlimited Potential with One-Time Purchase
BoxLang is more than just a language; it's a community. By choosing a Visionary License, you're not just investing in your success, you're actively contributing to the ongoing development and support of BoxLang.
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...Juraj Vysvader
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I didn't get rich from it but it did have 63K downloads (powered possible tens of thousands of websites).
Cyaniclab : Software Development Agency Portfolio.pdfCyanic lab
CyanicLab, an offshore custom software development company based in Sweden,India, Finland, is your go-to partner for startup development and innovative web design solutions. Our expert team specializes in crafting cutting-edge software tailored to meet the unique needs of startups and established enterprises alike. From conceptualization to execution, we offer comprehensive services including web and mobile app development, UI/UX design, and ongoing software maintenance. Ready to elevate your business? Contact CyanicLab today and let us propel your vision to success with our top-notch IT solutions.
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...Globus
Large Language Models (LLMs) are currently the center of attention in the tech world, particularly for their potential to advance research. In this presentation, we'll explore a straightforward and effective method for quickly initiating inference runs on supercomputers using the vLLM tool with Globus Compute, specifically on the Polaris system at ALCF. We'll begin by briefly discussing the popularity and applications of LLMs in various fields. Following this, we will introduce the vLLM tool, and explain how it integrates with Globus Compute to efficiently manage LLM operations on Polaris. Attendees will learn the practical aspects of setting up and remotely triggering LLMs from local machines, focusing on ease of use and efficiency. This talk is ideal for researchers and practitioners looking to leverage the power of LLMs in their work, offering a clear guide to harnessing supercomputing resources for quick and effective LLM inference.
Paketo Buildpacks : la meilleure façon de construire des images OCI? DevopsDa...Anthony Dahanne
Les Buildpacks existent depuis plus de 10 ans ! D’abord, ils étaient utilisés pour détecter et construire une application avant de la déployer sur certains PaaS. Ensuite, nous avons pu créer des images Docker (OCI) avec leur dernière génération, les Cloud Native Buildpacks (CNCF en incubation). Sont-ils une bonne alternative au Dockerfile ? Que sont les buildpacks Paketo ? Quelles communautés les soutiennent et comment ?
Venez le découvrir lors de cette session ignite
May Marketo Masterclass, London MUG May 22 2024.pdfAdele Miller
Can't make Adobe Summit in Vegas? No sweat because the EMEA Marketo Engage Champions are coming to London to share their Summit sessions, insights and more!
This is a MUG with a twist you don't want to miss.
Enhancing Project Management Efficiency_ Leveraging AI Tools like ChatGPT.pdfJay Das
With the advent of artificial intelligence or AI tools, project management processes are undergoing a transformative shift. By using tools like ChatGPT, and Bard organizations can empower their leaders and managers to plan, execute, and monitor projects more effectively.
SOCRadar Research Team: Latest Activities of IntelBrokerSOCRadar
The European Union Agency for Law Enforcement Cooperation (Europol) has suffered an alleged data breach after a notorious threat actor claimed to have exfiltrated data from its systems. Infamous data leaker IntelBroker posted on the even more infamous BreachForums hacking forum, saying that Europol suffered a data breach this month.
The alleged breach affected Europol agencies CCSE, EC3, Europol Platform for Experts, Law Enforcement Forum, and SIRIUS. Infiltration of these entities can disrupt ongoing investigations and compromise sensitive intelligence shared among international law enforcement agencies.
However, this is neither the first nor the last activity of IntekBroker. We have compiled for you what happened in the last few days. To track such hacker activities on dark web sources like hacker forums, private Telegram channels, and other hidden platforms where cyber threats often originate, you can check SOCRadar’s Dark Web News.
Stay Informed on Threat Actors’ Activity on the Dark Web with SOCRadar!
Enhancing Research Orchestration Capabilities at ORNL.pdfGlobus
Cross-facility research orchestration comes with ever-changing constraints regarding the availability and suitability of various compute and data resources. In short, a flexible data and processing fabric is needed to enable the dynamic redirection of data and compute tasks throughout the lifecycle of an experiment. In this talk, we illustrate how we easily leveraged Globus services to instrument the ACE research testbed at the Oak Ridge Leadership Computing Facility with flexible data and task orchestration capabilities.
Enhancing Research Orchestration Capabilities at ORNL.pdf
Secure Your Apps with NGINX Plus and the ModSecurity WAF
1. MORE INFORMATION AT NGINX.COM
NGINX Plus with
ModSecurity WAF
Protect your applications
2. MORE INFORMATION AT NGINX.COM
Faisal Memon
Product Marketer at NGINX, Inc.
Formerly:
- Technical Marketing Engineer, Riverbed
- Software Developer, Cisco Systems
Eric Lugo
Technical Solutions Architect at NGINX, Inc.
Formerly:
- Solutions Engineer, Cloudflare
3. MORE INFORMATION AT NGINX.COM
• First OSS release in 2004
• Company founded in 2011
• VC-backed by industry leaders
• 190+ million open source users
• 1,000+ customers
• 120+ employees
Igor Sysoev, NGINX creator and founder
4. MORE INFORMATION AT NGINX.COM
The Current Security Climate
• 50% increase in web app attacks and 125% increase in DDoS in the past year
• Krebs on Security – 620 Gbps DDoS attack using hacked IoT devices
• Mirai source code released
• Dyn hit with DDoS using Mirai
• Adult Friend Finder – User data compromised by LFI attack
• Democratic National Committee (DNC) – Emails hacked and released
• Conspiracy against Bernie Sanders revealed
• Head of DNC and 3 others forced to resign
• Code Spaces – Went out of business after data deleted by attacker
5. MORE INFORMATION AT NGINX.COM
Protecting Yourself
• Restrict recursive DNS requests to local hosts only
• Proactively keep PCs and endpoints patched and up-to-date
• Change all passwords to something not in a dictionary
• Don’t use the same password for everything
• Sanitize all input to web apps
• Use two-factor authentication
6. MORE INFORMATION AT NGINX.COM
Protecting Yourself
• CDN services that can absorb large scale DDoS attacks
• Akamai, Cloudflare, Google Shield, etc.
• Network firewall
• Palo Alto, Check Point, Cisco, pfSense, etc.
• Intrusion Prevention/Detection Systems (IPS/IDS)
• Security Information and Event Management (SIEM)
• Secure Web Gateway
• Web application firewall (WAF)
7. MORE INFORMATION AT NGINX.COM
Comprehensive Protection for Critical Apps and Data
• SQL injection (SQLi)
• Local file inclusion (LFI)
• Remote file inclusion
(RFI)
• Remote code execution
(RCE)
• Cross-site request forgery
(CSRF)
• Cross-site scripting (XSS)
• Credit card leakages
• HTTP protocol violations
8. MORE INFORMATION AT NGINX.COM
ModSecurity Background
“...even when you understand web security it is difficult to produce secure
code, especially when working under the pressure so common in today’s
software development projects.”
—Ivan Ristic, ModSecurity creator
• Initial open source release in 2002
• Used by tens of thousands of websites today
• Over 3,000 downloads/month
• Large, active, and enthusiastic community backing
9. MORE INFORMATION AT NGINX.COM
Why NGINX Plus with ModSecurity WAF?
• Cut costs
• Over 66% savings in 5 year TCO vs. Imperva
• Software flexibility
• Deploy on bare metal, containers, and public cloud
• Easy Deployment
• Install on standard Linux servers
• Application delivery and security in one place
• Open platform
• Standard PCRE regex based rules language
• PCI-DSS Requirement 6.6 compliance
10. MORE INFORMATION AT NGINX.COM
How to get ModSecurity WAF?
• Currently for non-production usage only
• Based on early ModSecurity 3.0 release candidate
• Email sales@nginx.com for access
12. MORE INFORMATION AT NGINX.COM
OWASP
• “Open Web Application Security Project”
• Non-profit organization, providing OpenSource Tools
• Core Rule Set (CRS)
• Generic Rules
• Base line for any app server
• Low risk of False-Positives
• Protects
• SQL Injection (SQLi)
• Cross Site Scripting (XSS)
• Many other attacks
• Last update 2013
• Researching for 2017 list
• Support for CRS included with subscription
13. MORE INFORMATION AT NGINX.COM
Performance
• Only run ModSecurity for Dynamic content
• Bypass OWASP security rules for static assets and Cache them!
• Images, CSS, JS, PDF, and other Media files
• Use NGINX Rate-limiting
14. MORE INFORMATION AT NGINX.COM
Caveats, Current State, and Missing Pieces
• Public Blacklist
• IP Reputation, Spamhaus, Project Honeypot, etc.
• Response/Request Body Stream
• On the fly HTML/json/xml body Rewriting
• DoS protection
• ModSecurity for NGINX does not include DoS protection
• NGINX can already do this with limit_req_zone
16. MORE INFORMATION AT NGINX.COM
Summary
• All applications are now targets for attackers
• NGINX Plus with ModSecurity WAF protects against a broad range of
attacks
• Cut costs and gain flexibility compared to other leading WAFs
• ModSecurity has 5 processing phases and is anchored by the OWASP Core
rule set
• Improve performance by bypassing static content
• Email sales@nginx.com to get early access
Editor's Notes
NGINX the popular open source web server, load balancer, content, and just a great multi purpose tool
Used by 169 million websites today and has seen growth of 37% in just the past year
Originally created by Igor Sysoev to help handle the onslaught of new users he and other website owners were experiencing in the late 90’s and early 2000’s as the internet really became more mainstream.
Company founded in 2011
Over $40 million total funding
$8 million series B in April
From here, we'll go more into the high-level technical features of ModSecurity. First is how ModSecurity process each request.
The first two phases are part of the HTTP Request; Request Headers, and Request Body.
Phase 1 rule would be useful for blocking referers, host, or even exceptions for specific host headers. For example, you didn't want a rule to run for your internal qa testing domain, but all other rules needed to run.
Phase 2 looks at the request body, such as form fields, or json and xml request.
A lot of the OWASP Top 10 rules will be processed here, such as SQL injection, and Cross Site Scripting rules. Most if not all of your rules will be processed at phase 2, and since phases are cumulative, Request Headers are included in Phase 2.
Phase 3 and 4 are part of the response processes. Phase 4 allows ModSecurity to inspect outgoing traffic, such as monitoring Password dumps, Social Security or Credit Card numbers. And again, since phases are cumulative, Phase 3 and 4, run phase 1 and 2 as well.
Phase 5 allows you to modify how/where modsecurity is logged
OWASP or Open Web Application Security Project is a non-profit organization that provide Open Source and free to use tools from a large community of users.
OWASP has a list of top 10 common vulnerabilities,which is updated every couple of years. The last time the list was updated was 2013.
A survey was conducted earlier this year to compile a new list for 2017, which is currently in the researching phase.
OWASP has a rule set to protect your application from these common vulnerabilities called CRS or “Core Ruleset”
This ruleset is a base line for any app server, with low risk of false positives.
These rules include protection against SQL Injection, Cross Site Scripting, and other common vulnerabilities
A ModSecurity subscription with nginx plus includes support for the OWASP CRS.
ModSecurity, specifically the Core Ruleset can cause performance degradation. These rules may run through lots or Regular Expression for each request, because of this, you should only run ModSecurity for you dynamic assets, HTML, PHP, files. And bypass ModSecurity for your static assets, such as your images, css, js, fonts, and videos. Because NGINX also has caching feature, you should also be caching these assets.
This following example shows a configuration for security and performance.
The first block shows ModSecurity being turned on for all request, and it’s using the limit_req zone dynamic, more on this in the next slide.
The second block is an exception to the first block, which is using the limit_req zone static, uses caching, and does not have ModSecurity enabled.
ModSecurity for NGINX plus is currently in a Preview mode, and is using the latest version of ModSecurity, version 3.
It has several feature parity pieces that are not included in the latest version 3 release. This include featuressuch as public blacklist, like Spamhaus or Project Honeypot.
Body Streaming, currently the body will need to be fully blocked. In a future release, this will allow for on the fly rewriting without blocking the entire response, such as modifying a credit card number.
DoSprotection, which can be done with nginx's limit_req_zone.
From our previous configuration, this is where we would set the threshold for our rate limiting. The following example allows a single IP address to request a dynamic file 50 times per second and static files (images, js, css, etc) at 1000 times per second, on average.
Because of the missing feature parity and ModSecurity has the ability to block legitimate traffic we recommend that you test ModSecurity out in a staging environment for at least one month before going live to verify there are no anomalies or false positives. We also recommend that you test out any custom rules you may be porting over from an older version of ModSecurity during this time.
Installation and Configuration
https://docs.google.com/document/d/1h-5y_gEAdfrcJJK3kdCJzlp-zYL1hc8Ejy2hqKpkb4c/edit#
https://raw.githubusercontent.com/SpiderLabs/ModSecurity/master/modsecurity.conf-recommended
OWASP Rulesets
https://github.com/SpiderLabs/owasp-modsecurity-crs/tree/v3.0.0-rc2
I’ve created a couple of Custom Rulesets to give you an idea of how
Query String
Bad Referrers
User-Agents
Show:
Let’s see how these would work in the real world
http://mywaf.com/?query=bad
http://badsite.xyz/bad/
curl -sv '127.0.0.1' -H 'User-Agent:’
curl -sv '127.0.0.1' -H 'User-Agent: 1' -H 'User-Agent: 2'
Nitkos Tool
Nitkos tool is a tool used for common vulnerabilities. This can run for a bit of time, so I’ll only run the top ones.
perl program/nikto.pl -h localhost -Tuning 1234567890abcdex -C none
Alerting Logging
Before we go to our Q&A, In summary we went over
How ModSecurity processes a request, in phases
ModSecurity and The Core rulesets supported by NGINX plus
Being mindful of performance
And before going live, modsecurity is ran through intensive QA for the core rule sets and your custom rules.
