Name: OWASP Top 10: Broken Authentication
Start: 2018-01-02T17:15:00Z
End: 2018-01-02T17:15:10.000Z
Location: BrightTALK
Rating: 5

F5 is a multicloud application security and delivery company committed to bringing a better digital world to life. F5 partners with the world’s largest, most advanced organizations to secure every app—on premises, in the cloud, or at the edge. F5 enables businesses to continuously stay ahead of threats while delivering exceptional, secure digital experiences for their customers. For more information, go to f5.com. 



As the application ecosystem rapidly evolves and grows more complex, your application delivery and security services must also keep pace with changing digital needs. With BIG-IP Next, the next-generation of F5’s BIG-IP software, you can simplify your day-to-day operations, strengthen security, enhance visibility, and experience unrivaled performance.

Join us as we highlight why we’re evolving from BIG-IP TMOS and demonstrate the value you can expect from transitioning to BIG-IP Next. You’ll leave with a solid understanding of how BIG-IP Next is equipped to better support you and your next era of applications, with strategies to help you migrate to BIG-IP Next.

In this webinar, we’ll cover:

-  What BIG-IP Next is and how it differs from BIG-IP TMOS
-  The benefits of adopting BIG-IP Next
-  The relationship between BIG-IP Next Central Manager and BIG-IP Next Instances
-  What steps you can take to ensure a seamless transition 

Register today, learn more

Modern App Delivery & Security with BIG-IP Next

When you deploy Red Hat OpenShift on-prem and want to expand to a hybrid cloud environment, it can be challenging to provision your networking and security consistently across all environments. Now there’s a solution that easily connects your apps by provisioning the routing, VPNs, or NAT automatically across multiple clients and by providing a consistent security policy.

Join us to discover the new F5 collaboration with Red Hat. This solution brings together the Red Hat OpenShift Container Platform with F5 Distributed Cloud secure multicloud networking. This provides a managed app environment across all clouds that enables organizations to achieve seamless, secure networking. We’ll provide a short demo of the joint solution, and you’ll discover how it can help reduce your digital complexity, lower your total cost of ownership, and help reduce your operational burden.

In this webinar, we’ll cover:
-  The challenges of multicloud networking and security
-  How to easily provision networking, application connectivity, and unified security across hybrid or multiple clouds
-  How to enable application mobility between Elastic Kubernetes Service (EKS) and Red Hat OpenShift on AWS (ROSA).

Register today, learn more

Secure Multicloud Networking with F5 and Red Hat OpenShift

APIs are coming under attack at an unmatched velocity and viciousness compared to other assaults on an organization’s digital footprint. While there’s a dizzying array of solutions, not all API security solutions are created equally. So, how can teams find the right-fit approach to reach the summit of peak API protection?
Join us for a live webinar with Datos Insights, Director Cybersecurity Practice, John Horn, who will share research curated from a year’s worth of analysis of API protection strategies and user interviews on what buyers of API security solutions should focus on. He will tap F5 experts to glean insights on market trends, technology innovations, and customer stories to see if we, as an industry, are up to the task of protecting the API-driven digital world.

In this webinar, we’ll cover:

-  The challenges of securing APIs in an expanding ecosystem
-  Why a holistic approach to protecting APIs is necessary
-  The importance of adopting integrated security solutions

Register today, learn more

How to Evaluate Your API Security Solutions

With F5 Distributed Cloud Services, Cisco Application Centric Infrastructure (ACI) customers can apply SaaS-based security, networking, and application management services that can be deployed across multi-cloud, on-premises, and edge locations.

Join us to learn how Distributed Cloud Services allows you to securely connect and deploy distributed application workloads in a hybrid multi-cloud environment – quickly and efficiently. We'll show you a demo on how to deploy Distributed Cloud Services in Cisco ACI.

In this webinar, we will:

-  Give you an overview of how Distributed Cloud Services work
-  Present Distributed Cloud Services deployment options and use cases in Cisco ACI
-  Provide a lab demo on Distributed Cloud Services use cases in Cisco ACI

Register today, learn more

Deploying F5 Distributed Cloud Services in Cisco ACI

Is Generative AI simply the most modern of modern apps? Are we prepared as an industry to safely unlock its potential? Explore the promises and perils of GenAI, including key considerations for visibility and security across highly-connected ecosystems. Dive into real-world examples of how GenAI can go awry through analysis of recent vulnerabilities and attacks on AI-based applications.   

Join F5 and ISC2 to hear more about:
 • The business and societal impacts of GenAI 
• Important considerations for protecting the conduit to AI workloads: app and API interfaces  
• Top security and safety risks including The OWASP Top 10 for Large Language Model Applications

De-mystifying Generative Al

Join Corey Marshall, Director of Solutions Engineering, and Sander Vinberg, Threat Researcher and lead author on the 2023 Identity Threat Report: The Unpatchables, as they share findings from the report and discuss their practical implications for securing digital identities. They will explore the top threats, highlight what you need to watch for, and specific F5 technologies that can help you address these threats.

Attend this webinar to discover:

-  The state of credential stuffing, including preferred targets
-  The evolution of phishing, including tactics and counter-countermeasures
-  What the growth of MFA bypass techniques could mean for you

Key Takeaways for the 2023 F5 Identity Threat Report

Get ready with next-generation solutions of F5 BIG-IP Automation and F5 rSeries. 

As organizations work to keep up with the demands of digital transformation, managing your application services and keeping up with user expectations can be a complex and evolving job. The F5 rSeries platform can help scale application delivery performance and automate application services to address many of today’s most critical business challenges.

Join us to learn from real-world use cases of organizations accelerating their app performance through automated migration to the API-first architecture of rSeries. We’ll highlight how F5 BIG-IP Automation and F5 rSeries are the building blocks to get you there.

In this webinar, we’ll cover:

-  How rSeries can lower your overall total cost of ownership
-  How to future-proof your investment and prepare for next-generation BIG-IP
-  Lessons learned and other best practices you can immediately apply to your own organization.

Take the Complexity Out of Digital Transformation with F5 BIG-IP

It’s crucial to provide effective and consistent security, whether your application is hosted in one location, multiple locations, is migrating, or has advanced delivery and security requirements.

Where do you start? In our latest webinar, we’ll show you how to protect your applications wherever they’re delivered. 

Join us as we:
• Explore how F5 Distributed Cloud Secure Multi-Cloud Networking helps securely deliver applications.
• Show consistent deployment and operations of application security across public cloud or private cloud/data center.
• Review layered security deployment architectures with the F5 portfolio of solutions like F5 BIG-IP and F5 NGINX designs.

Register now and get ready to take your network security to the next level.

Securing Apps in Distributed Environments

Legacy security tools simply can't keep up with the rapidly expanding attack surface in modern application architecture. F5 Distributed Cloud Services provides flexibility to quickly discover and address weak links and protect your APIs. We'll cover:
• How more APIs provide greater speed – and create more vulnerabilities 
• How to use machine learning to locate vulnerabilities in your APIs 
• How your security and dev teams can make things work better and more securely 

Join us, learn more.

Using F5 Distributed Cloud Services to Build Modern API Security

Organizations are increasingly deploying workloads across multiple diverse environments and application architectures. This creates a critical need to protect organizations’ essential applications no matter what their deployment or architecture – and with flexibility and speed.

Join our webinar to learn how the F5 Web Application Firewall (WAF) portfolio, paired with DevSecOps principles, enables organizations to deploy and maintain industry-leading security without sacrificing the time to value their applications. Our 15-minute demo will show you how you can accomplish this with multiple WAF options that allow you to deploy a hybrid architecture.

In this webinar, you’ll learn how:

-  Edge architecture can coexist with shift left practices
-  A strong security model can provide flexibility
-  F5-supported APIs and tooling paired with DevSecOps practices make it all possible

Shift Left and Edge Security with DevSecOps and F5

Most organizations are undergoing a digital transformation journey that requires them to manage and operate distributed applications across different environments – public clouds, data centers, and edge, according to the F5 2023 State of Application Strategy (SOAS) report. But these distributed deployments add operational complexity and cost, obscure visibility, and increase the surface area for potential cyberattacks. To properly address these challenges, it requires a comprehensive approach to connecting and securing multiple clouds and networks.

Join F5 and GigaOm for an educational conversation about the massive job of connecting – and securing – multiple clouds. Industry expert analysts will discuss the latest trends, challenges, and best practices when it comes to meeting the needs of traditional and modern apps—without increasing complexity or losing granular control and necessary visibility.

In this webinar, we’ll cover:

-  The challenges of managing hybrid and multi-cloud landscapes
-  Key requirements for multi-cloud networking success
-  Security approach in multi-cloud networking

Exploring the Latest Trends in Securing Multi-Cloud Networks with F5 & GigaOm

Join the experts from Learnk8s and NGINX to learn “How do I route traffic to my microservices in Kubernetes?” We’ll cover the basics of Kubernetes infrastructure and traffic management, including node pools and node instances, NodePort vs LoadBalancer vs Ingress, a look at the Ingress controller landscape, and what you need to know about the Kubernetes Gateway API.

Read the companion blog ""Architecting Kubernetes Clusters for High-Traffic Websites"" 
⬡ https://bit.ly/3sQGRoS

Get the Lab Guide
⬡ https://bit.ly/3HMPHeW 

This webinar was part of Microservices March 2022. We are kicking off Microservices March 2023 March 8. You can learn more here https://bit.ly/3YlAXca 

What is Microservices March? Watch a breakdown of the event with the DevCentral team!
⬡ https://youtu.be/jgK6nco09Mc

Speaker: 
◆ Salman Iqbal, Instructor at Learnk8s

Bio: 
◆ Salman is a Learnk8s instructor and holds both the CKA and CKAD certifications. Salman has extensive experience in scaling data and machine learning pipelines using Kubernetes. Salman has trained hundreds of engineers all over the world (from sunny California to cold Finland).

Social:
⬡ https://twitter.com/soulmaniqbal
⬡ https://www.youtube.com/c/SoulmanIqbal
⬡ https://www.linkedin.com/in/salman-iqbal-a6a5b026/

Get Started with NGINX Ingress Controller
⬡ https://bit.ly/35BHoSi

Free eBook: Taking Kubernetes from Test to Production
⬡ https://bit.ly/3HpvaJL

Architecting Kubernetes Clusters for High-Traffic Websites

Join the experts from Learnk8s and NGINX to learn “What are the best practices for deploying an API gateways in Kubernetes?” This livestream builds on concepts discussed in “Architecting Kubernetes Clusters for High-Traffic Websites” – including flow of a packet, more on NodePort vs LoadBalancer vs Ingress, routing internal vs external traffic (multiple ingresses, IngressClasses), Authorization and Authentication (OIDC), rate limiting, and graceful shutdown in Kubernetes.

For more on this topic, read the companion blog "Exposing APIs in Kubernetes"
⬡ https://bit.ly/3tWWMRL

Get the Lab Guide
https://bit.ly/3HjLe1C 

This webinar was part of Microservices March 2022. We are kicking off Microservices March 2023 March 8. You can learn more here https://bit.ly/3YlAXca 

What is Microservices March? Watch a breakdown of the event with the DevCentral team!
⬡ https://youtu.be/jgK6nco09Mc

See the examples from Andrea's demo here: 
⬡ https://github.com/nginxinc/microservices-march

Speaker: 
◆ Andrea Giardini, Instructor at Learnk8s

Bio: 
◆ Andrea is an infrastructure specialist. He worked at CERN on the Large Harden Collider grid and led the infrastructure team at Camunda. He is currently working as an independent contractor on Kubernetes and Cloud technologies projects.

Social: 
⬡ https://www.linkedin.com/in/giardiniandrea/

Get Started with NGINX Ingress Controller
⬡ https://bit.ly/35BHoSi

Free eBook: Taking Kubernetes from Test to Production
⬡ https://bit.ly/3HpvaJL

Exposing APIs with Kubernetes (North-South Traffic)

Join the experts from Learnk8s and NGINX to learn “How do I secure my APIs and apps to be production-ready?” In this session, you’ll learn about the sidecar pattern and policies that can make your services more secure and resilient, including a live hacking demo. 

Read the companion blog "Microservices Security Pattern in Kubernetes" 
⬡ https://bit.ly/3qh3XDk 

Get the Lab Guide
https://bit.ly/3DyMsFv 

This webinar was part of Microservices March 2022. We are kicking off Microservices March 2023 March 8. You can learn more here https://bit.ly/3YlAXca 

What is Microservices March? Watch a breakdown of the event with the DevCentral team! 
⬡ https://youtu.be/jgK6nco09Mc 

Speaker: 
◆ Chris Nesbitt-Smith, Instructor at Learnk8s 

Bio: 
◆ Chris is a Kubernetes Certified Admin and Security expert. Chris has extensive experience in securing Kubernetes having worked for prestigious entities such as the UK Government and Bank of England. 

Social: 
◆ https://www.linkedin.com/in/cnesbittsmith/

What is Microservices March? Watch a breakdown of the event with the DevCentral team!
⬡ https://youtu.be/jgK6nco09Mc

Get Started with NGINX Ingress Controller
⬡ https://bit.ly/35BHoSi

Free eBook: Taking Kubernetes from Test to Production
⬡ https://bit.ly/3HpvaJL

Microservices Security Pattern in Kubernetes (East-West Traffic)

Join the experts from Learnk8s and NGINX to learn “How do I split traffic for A/B testing? Can I use Kubernetes to do shadow rollouts?” 

This webinar covers advanced traffic management use cases including zero downtime deployments, traffic splitting (at the Ingress controller and service mesh), tracing, and mapping traffic flow in real-time. This livestream is part of Microservices March 2022: Kubernetes Networking Edition. 

Read the companion blog: "Advanced Kubernetes Deployment Strategies" 
⬡ https://bit.ly/3LnfrgG 

Get the Lab Guide
https://bit.ly/3XUkQTm

This webinar was part of Microservices March 2022. We are kicking off Microservices March 2023 March 8. You can learn more here https://bit.ly/3YlAXca 

Speaker: 
◆ Andrea Giardini, Instructor at Learnk8s 

Bio: 
◆ Andrea is an infrastructure specialist. He worked at CERN on the Large Harden Collider grid and led the infrastructure team at Camunda. He is currently working as an independent contractor on Kubernetes and Cloud technologies projects. 

Social: 
◆ https://www.linkedin.com/in/giardiniandrea/

Get Started with NGINX Ingress Controller 
⬡ https://bit.ly/35BHoSi 

Free eBook: Taking Kubernetes from Test to Production 
⬡ https://bit.ly/3HpvaJL 

Demo and tutorial: "Improve Uptime and Resilience with a Canary Deployment" 
⬡ https://bit.ly/3qIOj3Y

Advanced Kubernetes Deployment Strategies

Kubernetes is a core component of most modern app delivery strategies because it helps organizations deliver apps faster with more agility and avoid costly downtime. But adopting Kubernetes is far from easy for organizations that are used to delivering three-tier apps. How do you decide which apps to refactor and which to build from scratch? What kinds of processes and tools can help you avoid common challenges around security and complexity? Join this session led by Rey Lejano, Kubernetes Field Engineer at Rancher, for answers to these common questions.

Speakers:
Rey Lejano

Lessons from the 2021 NGINX Survey: Your Kubernetes Adoption Journey
https://bit.ly/3wJMQx3 

What Is Kubernetes?
https://bit.ly/3YaVss2  

We are kicking off Microservices March 2023 March 8. You can learn more here https://bit.ly/3YlAXca

A Guide to Adopting Kubernetes

As organizations deploy production-grade Kubernetes across hybrid, multi-cloud environments, they recognize the need to streamline the processes used by their diverse development and operations teams to establish and manage connectivity to Kubernetes services and applications for external clients and within clusters. In this session, Brian Ehlert, Director of Product Management for NGINX, discusses the history of Kubernetes networking along with the latest developments and trends, and offers a glimpse into the future around providing client access to the applications in a shared, multi-tenant Kubernetes environment.

How to get involved with the NGINX Kubernetes Gateway Beta
https://github.com/nginxinc/nginx-kub...

5 Things to know about the NGINX Kubernetes Gateway
https://bit.ly/3Huklsd 

Learn how to deploy NGINX as an API Gateway
https://bit.ly/3Dy09V0 

We are kicking off Microservices March 2023 March 8. You can learn more here https://bit.ly/3YlAXca 

Speakers:
Brian Ehlert

The Future of Kubernetes Connectivity

Step into the world of NGINX and unlock the ultimate all-in-one solution for your software needs. NGINX Plus isn't just a software load balancer, API gateway, content cache, and web server - it's a dynamic force that can transform your microservices architecture. With NGINX Plus by your side, catering to the needs of your fast-moving applications has never been easier.

Experience the power of modular behavior as you optimize your systems for peak performance. NGINX Plus seamlessly integrates with any CI/CD pipeline, providing the automation and agility your organization needs to stay ahead of the curve.

Sure, there are plenty of tutorials online, but outdated and conflicting information can leave you feeling lost in a sea of uncertainty. Don't let that hold you back. Take the first step towards unlocking the full potential of NGINX Plus and embark on a journey of innovation and progress.

Getting Started with NGINX

John Wagnon discusses the details of the #2 vulnerability listed in this year's OWASP Top 10 Security Risks: Broken Authentication. Learn about this security risk and how to guard against it.

OWASP Top 10: Broken Authentication

OWASP

Broken Authentication

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

The storage community on BrightTALK is made up of thousands of storage and IT professionals. Find relevant webinars and videos on storage architecture, cloud storage, storage virtualization and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Storage

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

OWASP Top 10: Broken Authentication

Presented by

About this talk

More from this channel