Microservice architectures allow businesses to develop and deploy their applications in a much more flexible, scalable and convenient way – across multiple languages, frameworks and IT environments. However, new architectures require new tools and technologies, and those bring in new security challenges – and new skills to learn to fight off cyber-attacks efficiently.
Like with any other new technology which developers, operations and security teams are only beginning to explore in the recent years, there is still quite a lot of confusion about the capabilities of new platforms, misconceptions about new attack vectors and renewed discussions about balancing security with the pace of innovation expected from developers. And perhaps the biggest myth of microservice security is that it somehow takes care of itself.
In this session, we’ll look at the core technologies powering modern microservice architectures (containers, APIs, serverless backends, service meshes, etc.) and evaluate both their existing security capabilities and potential gaps to gain a strategic view of all the potential security and compliance challenges you should be thinking about before embracing microservices.