Name: Pragmatic DevSecOps Security Controls for cloud-native workloads
Start: 2021-10-05T15:00:00Z
End: 2021-10-05T15:00:40.000Z
Location: BrightTALK
Rating: 4.2

We help companies develop secure products. 

At CYBERCRYPT, we combine decades of experience in cryptography, secure architecture, and security analysis to keep your products protected.

95 percent of data breaches are cause by human errors, and with an average cost of a data breach globally being $3.92 million, it is not only a privacy concern but also very costly of an organization. More 50 percent of companies say that their IT departments are not sophisticated enough to handled advanced cyberattacks, but it doesn't have to be hard to probably secure your data.
In this talk we will show how Application-Layer encryption (ALE) can be applied easily to your data with a minimal amount of code changes, and ensure even authorized applications only have minimal access to the data using cryptographic principles and a role-based access control model. This means, that if you data is leaked, the attacked won't have access to your data.
All this can be implemented without fully sacrificing the advantages of a database, such as filtering.

Bio of the presenter: 
Kim has been working with computer science for 12 years, and has worked in the cyber security, telecommunications and finance industry. Today he is a cloud tech lead in CYBERCRYPT.

How to protect your data using Application Layer Encryption

Data breaches are more prolific than ever, with 2021 seeing 5250 confirmed instances involving large companies such as Facebook, LinkedIn, and Ubiquiti. Such breaches are not only a privacy concern, but are also very costly to the involved organization, incurring a loss of $4.24 million on average. The good news, however, is that in breaches where strong Zero Trust principles were employed this cost decreased by $1.76 million.

In this talk we show how Application-Layer Encryption (ALE) can be applied at the database level to provide strong protections against breaches. While traditional at rest database encryption helps protect your data in case of a direct breach, database ALE can ensure cryptographically that even authorized applications have minimal access. This means, that even if your data producing application contains a vulnerability, compromising this application won't give the attacker access to your data. Through the use of modern cryptographic techniques, database ALE can even be implemented without fully sacrificing useful capabilities of the database, such as search.

About our presenter: 
Philip has a background in mathematical engineering but has always had a strong interest in computer science, a combination which eventually resulted in a PhD in symmetric cryptography. Today he has the technical responsibility for the development of CYBERCRYPT's Encryptonize product.

Preventing Database Breaches with Application-Layer Encryption

Designing zero-trust architectures requires that you build security controls for each component of the architecture i.e. data storage, IAM, networking and application / API, just to mention a few. 

As we shift our focus to applications, security controls need to move closer to the application level. The traditional security controls implemented at the management plane like least-privilege and access patterns, coupled with IDS an other peripheral controls at the network plane, do not ensure any protection of the application data.

Here’s where application-layer encryption adds an extra layer of security to the whole architecture: implemented at the key plane/data plane, encrypting data within the application protects the data and metadata even in the case that malicious actors have procured the encryption keys for the data in transit or at rest. Based on this, we introduce Encryptonize®, our cloud-native encryption service that offers zero-trust cryptography controls for your cloud-native applications.

Introduce Application-Layer Encryption in your Zero-Trust Environments

Accessibility Testing: Ensure Superior Digital Experiences For All Customers

Continuous Testing: Bringing Continuous Flow to Application Testing

Improving DevOps Infrastructure in 2022

Locking Down the Security Of IAM

State of DevOps – Now, Next and Beyond

DevOps for Java Shops

NextGen DevOps: The Evolving DevOps Journey

Elevating an Organizations Road to Success Through Strategic Adoption of GitOps

Navigating the Top 10 Challenges for DevSecOps

Zero-downtime deployment on Kubernetes

Modern Application Development 2021

The ongoing drift towards micro-services and containerized deployments in the cloud introduces new security challenges that require continuous adaption in order to comply with the latest security practices.
Join us, as we provide examples of the most common security pitfalls for cloud-based deployments, while we demonstrate some of the security controls which can be used to decrease the attack surface and secure your deployment.

Pragmatic DevSecOps Security Controls for cloud-native workloads

Cloud Security

Containerization

Cyber Attacks

Cyber Security

DevOps

DevSecOps

Docker

Kubernetes

SecOps

security controls

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Pragmatic DevSecOps Security Controls for cloud-native workloads

Presented by

About this talk

More from this channel