cloud native security: rotate, repair, repave
TRANSCRIPT
![Page 1: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/1.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
Cloud Native SecurityRotate, Repair, Repave
Justin Smith@justinjsmith
![Page 2: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/2.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
Yo, I’ll tell you what I want, what I really really want.
2
Credit: Spice Girls
![Page 3: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/3.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 3
🍰𐆋𐆌𐆍𐆎𐆜𐆠
🌈
![Page 4: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/4.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 4
😨
![Page 5: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/5.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
Incremental Feature Failure
🎾 🚅5
![Page 6: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/6.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 6
𐆋𐆌𐆍𐆎𐆜𐆠
![Page 7: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/7.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
Taking is too easy,but that’s the way it is.
7
Credit: Spice Girls
![Page 8: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/8.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 8
![Page 9: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/9.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 9
2007 2015
![Page 10: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/10.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 10
![Page 11: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/11.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
So tell me what you want, what you really really want.
11
Credit: Spice Girls
![Page 12: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/12.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
/rəˈzilyənt/
12
💀
![Page 13: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/13.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
What’s the shape ofthe threat?
13
![Page 14: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/14.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 /
Vulnerable SoftwareLeaked Credentials
Time
14
![Page 15: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/15.jpg)
![Page 16: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/16.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 16
😠 🐌Time goes by but we
stand still
Credit: Spice Girls
![Page 17: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/17.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 17
💡
![Page 18: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/18.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 18
Step 1: Repair it.All of it.
Frequently.
![Page 19: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/19.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 19
𐆋𐆌𐆍𐆎𐆜𐆠 AppRuntimeServerOperating System
![Page 20: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/20.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 20
Step 2: Repave it.All of it.
Frequently.
![Page 21: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/21.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 21
𐆋𐆌𐆍𐆎𐆜𐆠 Repave vs. Patch
![Page 22: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/22.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 22
Step 3: Rotate CredsAll of ‘em.Frequently.
![Page 23: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/23.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 23
𐆋𐆌𐆍𐆎𐆜𐆠 Inevitable leakage
![Page 24: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/24.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 24
Repair, Repave, Rotate
![Page 25: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/25.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 25
Go faster to be safer.
![Page 26: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/26.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 26
![Page 27: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/27.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 27
![Page 28: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/28.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 28
💩🚀🍠
![Page 29: Cloud Native Security: Rotate, Repair, Repave](https://reader031.vdocuments.mx/reader031/viewer/2022021815/587b98791a28ab4e4f8b6de5/html5/thumbnails/29.jpg)
Unless o therw ise ind ica ted , these s l ides are © 2013-2016 P ivo ta l So f tware , Inc . and l i censed under a Creat ive Commons At t r ibu t ion-NonCommerc ia l l i cense: h t tp : / / c rea t ivecommons.org / l i censes /by-nc /3 .0 / 29
Change is hostile to malware.