350 likes | 509 Views
The Defense RESTs: Automation and APIs for Better Security. September 26, 2012. David Mortman. Introduction. Want to get better at security? . Improve your operations. Improve your developement. The Problem. Huge % of incidents revolve around operational or coding issues. Why?.
E N D
The Defense RESTs: Automation and APIs for Better Security September 26, 2012 David Mortman
Huge % of incidents revolve around operational or coding issues
Compliance & Change Control
Configuration Drift AKA Variation is Evil
INSTANCE=`ec2-run-instances $AMI -t $TYPE -k $KEY | grepi- | cut -f 2`; until [ $IP ]; do sleep 15; IP=`ec2-describe-instances $INSTANCE | grepi- | cut -f 17`; done ; curl -H "X-Requested-With: DM Automation" -u $USER:$PASS "https://qualysapi.qualys.com/msp/asset_ip.php?action=add&host_ips=$IP"; curl -H "X-Requested-With: DM Automation" -u $USER:$PASS "https://qualysapi.qualys.com/msp/scan.php?ip=$IP&save_report=yes"
Findbugs et al. http://findbugs.sourceforge.net/
Gauntlt https://github.com/thegauntlet/gauntlt
Woodward: Code Changes & Complexity
Future Directions & Resources
iControl & Space
Security Automation List SecurityAutomata.Com
IAM SCIM/XACML
Any questions? David MortmanChief Security Architectdavid.mortman@enstratus.com@mortman