Diese Präsentation wurde erfolgreich gemeldet.
Die SlideShare-Präsentation wird heruntergeladen. ×

Secure your Application with Google cloud armor

Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Wird geladen in …3
×

Hier ansehen

1 von 13 Anzeige
Anzeige

Weitere Verwandte Inhalte

Diashows für Sie (20)

Ähnlich wie Secure your Application with Google cloud armor (20)

Anzeige

Weitere von DevOps Indonesia (20)

Aktuellste (20)

Anzeige

Secure your Application with Google cloud armor

  1. 1. PAGE 1 DEVOPS INDONESIA PAGE 1 DEVOPS INDONESIA Didiet Agus Pambudiono DevOps Engineer PT. Gits Indonesia Jakarta, 8 Desember 2021 Secure your Application with Google Cloud Armor
  2. 2. PAGE 2 DEVOPS INDONESIA About Me : ● DevOps Engineer PT. Gits Indonesia ● Member of openSUSE Project, openSUSE-ID, KLAS, Kubernetes-Id etc ● Cloud Enthusiast ● Contact me : − didiet@gits.id − pambudiono@opensuse.org − pambudiono.os@gmail.com
  3. 3. PAGE 3 DEVOPS INDONESIA Agenda : ● Introduction ● Network Security Overview ● Cloud Armor ● WAF & DDoS ● Protecting your applications
  4. 4. PAGE 4 DEVOPS INDONESIA Introduction Why WAF? ● Protecting business ● Protection against common attack types ● Easy maintenance ● Protect sensitive data ● Complements other security tools
  5. 5. PAGE 5 DEVOPS INDONESIA Network Security Overview
  6. 6. PAGE 6 DEVOPS INDONESIA Network Security Overview
  7. 7. PAGE 7 DEVOPS INDONESIA Network Security Overview Denial of service attacks ● Infrastructure DDoS attacks Volumetric/protocol attacks, attempt to saturate bandwidth and overwhelm your app ○ TCP SYN Floods, DNS/NTP/other Amplification attacks IP fragmentation etc ● Application-aware-attacks Exploit application weakness ○ Slowloris, Cross-Site Scripting, SQL Injection ● Multivector attacks : Attacker uses two or more attack vectors together
  8. 8. PAGE 8 DEVOPS INDONESIA Cloud Armor ● Help protect your applications and websites against denial of service and web attacks. ● Benefit from DDoS protection and WAF at Google scale ● Detect and mitigate attacks against your Cloud Load Balancing workloads ● Adaptive Protection (Preview) ML-based mechanism to help detect and block Layer 7 DDoS attacks ● Mitigate OWASP Top 10 risks and help protect workloads on-premises or in the cloud ● Bot management to stop fraud at the edge through native integration with reCAPTCHA Enterprise
  9. 9. PAGE 9 DEVOPS INDONESIA Cloud Armor ● Help protect your applications and websites against denial of service and web attacks. ● Benefit from DDoS protection and WAF at Google scale ● Detect and mitigate attacks against your Cloud Load Balancing workloads ● Adaptive Protection (Preview) ML-based mechanism to help detect and block Layer 7 DDoS attacks ● Mitigate OWASP Top 10 risks and help protect workloads on-premises or in the cloud ● Bot management to stop fraud at the edge through native integration with reCAPTCHA Enterprise
  10. 10. PAGE 10 DEVOPS INDONESIA Cloud Armor
  11. 11. PAGE 11 DEVOPS INDONESIA Cloud Armor
  12. 12. PAGE 12 DEVOPS INDONESIA Cloud Armor Use Case ● You have the potential to enable access for all of the users who have specific IP addresses, as per your list of allowance. ● You can prefer to block access for all of the select users who possess the specific IP addresses, as per your list of denial. ● With the WAF rules, you can protect your application deployments against layer attacks. ● You can seek a defense system for the DDoS attacks and also implement layer seven monitoring. ● Cloud Armor can address issues such as Local File Inclusion, Remote File Inclusion, SQL Injection, Cross-Site Scripting, and Remote Code Execution.
  13. 13. PAGE 13 DEVOPS INDONESIA DEMO ?

×