Reinhard Kugler

Security Challenges of Breaking A Monolith

How can a single vulnerability in one container compromise your entire system? Discover the hidden security risks of breaking up a monolith.

Security Challenges of Breaking A Monolith
#1about 7 minutes

Understanding the problems with a monolithic architecture

A monolithic video processing application faces challenges with scaling, high costs from idle power, and a lack of reliability.

#2about 2 minutes

Decomposing the monolith into a microservice architecture

The application is broken down into distinct services like an API, a message broker, a transcoding worker, and S3 storage.

#3about 2 minutes

Securing container images and the software supply chain

The initial step of containerization reveals that official base images often contain known vulnerabilities, highlighting supply chain risks.

#4about 4 minutes

Defining trust boundaries for authentication and authorization

Breaking down the application creates new trust boundaries between frontend and backend components, requiring robust authentication and authorization.

#5about 8 minutes

Using bucket policies and pre-signed URLs for S3 access

AWS S3 access is controlled using bucket policies for broad rules and pre-signed URLs for providing temporary, specific access to objects.

#6about 3 minutes

Preventing malicious uploads with input validation

An AWS Lambda function can be triggered on file uploads to S3 to perform validation and prevent attackers from hosting malicious content.

#7about 5 minutes

Analyzing the impact of a container vulnerability

A vulnerability in a transcoding library like FFmpeg can be exploited through a malicious file, leading to code execution and access to secrets within the container.

#8about 2 minutes

Comparing security trade-offs of monoliths vs microservices

While microservices increase the attack surface and complexity, they offer better isolation, making privilege escalation more difficult than in a monolith.

#9about 11 minutes

Q&A on microservice architecture and security

The speaker answers audience questions about using AI in security, starting new projects, and identifying threats in a microservice architecture.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Building and securing the new microservices architecture
01:20 MIN

Building and securing the new microservices architecture

How to Destroy a Monolith?

Challenges of modernizing and scaling monolithic frontends
03:07 MIN

Challenges of modernizing and scaling monolithic frontends

Web-Fragments: incremental micro-frontends migration approach for enterprise

The challenge of data security in microservice architectures
01:29 MIN

The challenge of data security in microservice architectures

Safeguarding Sensitive Data Access At Scale with Privacy-Enhancing Technologies

Leveraging containerization for improved security posture
01:22 MIN

Leveraging containerization for improved security posture

Kubernetes Security - Challenge and Opportunity

Overcoming the challenges of container-based infrastructure
02:28 MIN

Overcoming the challenges of container-based infrastructure

Building Reliable Serverless Applications with AWS CDK and Testing

Navigating security risks when creating developer content
05:12 MIN

Navigating security risks when creating developer content

WeAreDevelopers LIVE - Should We Respect LLMs? Is Rust Taking Over? Developers as Content Creators and more

The flawed debate between monoliths and microservices
02:34 MIN

The flawed debate between monoliths and microservices

Microservices? Monoliths? An Annoying Discussion!

Audience Q&A on practical micro-frontend challenges
13:10 MIN

Audience Q&A on practical micro-frontend challenges

Micro-frontends anti-patterns

Featured Partners

Related Videos

See all videos
You can’t hack what you can’t see29:34

You can’t hack what you can’t see

Reto Kaeser

DevSecOps: Security in DevOps33:20

DevSecOps: Security in DevOps

Aarno Aukia

Securing Your Web Application Pipeline From Intruders44:30

Securing Your Web Application Pipeline From Intruders

Milecia McGregor

Cyber Security: Small, and Large!37:32

Cyber Security: Small, and Large!

Martin Schmiedecker

Climate vs. Weather: How Do We Sustainably Make Software More Secure?51:41

Climate vs. Weather: How Do We Sustainably Make Software More Secure?

Panel Discussion

Walking into the era of Supply Chain Risks37:36

Walking into the era of Supply Chain Risks

Vandana Verma

Get started with securing your cloud-native Java microservices applications1:48:32

Get started with securing your cloud-native Java microservices applications

Thomas Südbröcker

Single Server, Global Reach: Running a Worldwide Marketplace on Bare Metal in a Cloud-Dominated World50:06

Single Server, Global Reach: Running a Worldwide Marketplace on Bare Metal in a Cloud-Dominated World

Jens Happe

Related Articles

View all articles
BB
Benedikt Bischof
Why You Shouldn’t Build a Microservice Architecture
Welcome to this issue of the WeAreDevelopers Live Talk series. This article recaps an interesting talk by Michael Eisenbart who talks about the pros and cons of microservice architecture.‍About the speaker:‍Michael has been working for Bosch as a sof...
Why You Shouldn’t Build a Microservice Architecture
DC
Daniel Cranney
The Overflow: Security and Privacy
Every week we dig through hundreds of links from all over the web, and it’s often hard for developers keep up. So, we thought we’d put together some links we couldn’t fit in the Dev Digest in what we call The Overflow. This week, we’re looking at wha...
The Overflow: Security and Privacy
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?
CH
Chris Heilmann
Dev Digest 134 - Where pixels sing?
News and ArticlesWeAreDevelopers LIVE Data and Security Day is on Wednesday, 25/09/2024. Learn about OPC UA Updates, Best Practices for Using GitHub Secrets, Passwordless Web 1.5, Emerging AI Security Risks, Data Privacy in LLMs and get a chance to t...
Dev Digest 134 - Where pixels sing?

From learning to earning

Jobs that call for the skills explored in this talk.