Identity-Native Infrastructure Access Management: Preventing Breaches by Eliminating Secrets and Adopting Zero Trust
Kontsevoy, Ev, Shah, Sakshyam, Conrad, Peter
買這商品的人也買了...
-
打開量化投資的黑箱, 2/e (Inside the Black Box: A Simple Guide to Quantitative and High Frequency Trading, 2/e)$414$393 -
$1,015BPF 之巔:洞悉 Linux 系統和應用性能 (BPF Performance Tools) -
高效能團隊模式:支持軟件快速交付的組織架構 (Team Topologies: Organizing Business and Technology Teams for Fast Flow)$534$507 -
測試架構師修煉之道:從測試工程師到測試架構師, 2/e$654$621 -
Multicore and GPU Programming: An Integrated Approach, 2/e (美國原版)$3,850$3,658 -
多處理器編程的藝術, 2/e (The Art of Multiprocessor Programming, 2/e)$894$849 -
性能之巔:系統、企業與雲可觀測性, 2/e$1,428$1,357 -
計算機系統開發與優化實戰$659$626 -
計算機底層的秘密$602$566 -
C++20 代碼整潔之道:可持續軟件開發模式實踐 (原書第2版) (Clean C++20: Sustainable Software Development Patterns and Best Practices, 2/e)$774$735 -
$509數以達理:量化研發管理指南 -
Engineering Manager's Handbook: An insider's guide to managing software development and engineering teams$1,570$1,492 -
C++ Programming for Linux Systems: Create robust enterprise software for Linux and Unix-based operating systems (Paperback)$1,800$1,710 -
Programming Your GPU with OpenMP: Performance Portability for GPUs (Paperback)$2,800$2,744 -
Automating Data Quality Monitoring: Scaling Beyond Rules with Machine Learning (Paperback)$2,360$2,242
商品描述
Traditional secret-based credentials can't scale to meet the complexity and size of cloud and on-premises infrastructure. Today's applications are spread across a diverse range of clouds and colocation facilities, as well as on-prem data centers. Each layer of this modern stack has its own attack vectors and protocols to consider.
How can you secure access to diverse infrastructure components, from bare metal to ephemeral containers, consistently and simply? In this practical book, authors Ev Kontsevoy, Sakshyam Shah, and Peter Conrad break this topic down into manageable pieces. You'll discover how different parts of the approach fit together in a way that enables engineering teams to build more secure applications without slowing down productivity.
With this book, you'll learn:
- The four pillars of access: connectivity, authentication, authorization, and audit
- Why every attack follows the same pattern, and how to make this threat impossible
- How to implement identity-based access across your entire infrastructure with digital certificates
- Why it's time for secret-based credentials to go away
- How to securely connect to remote resources including servers, databases, K8s Pods, and internal applications such as Jenkins and GitLab
- Authentication and authorization methods for gaining access to and permission for using protected resources
