Evergreen Development: Recent Tech Trends and Their Implications
Future Cyber Tech, Application Security & DevOps Theatre
Wed 26th Sep 11:30 to 12:00
Recent innovations in open source software orchestration tools (e.g. Kubernetes, Terraform), and widespread adoption of the SRE model, have democratized a path for reliable online services. This session will explore what these changes are about, how to take advantage of them, and what this means for the shape of existing and new business in the coming years.
It will discuss a development model called evergreen development, which relies on the capabilities these social and technical tools unlock. Evergreen uses simple, proven, and principled methods to reduce attack surfaces organization-wide. Standardized build pipelines, rapidly building immutable images that are automatically pinned to the latest stable version, can turn dependency drift from a hard-to-manage problem into an expected (and easily managed) exception. By defaulting builds to using the latest available version, security patches are more regularly deployed to production. Since the vast majority of exploits are known ones, this common sense approach can mitigate or prevent a wide variety of attacks.
The session will also cover the non-security aspects of evergreen development, and how those might help pioneer this style of development at your organization.
What you will take away from this session
- Continuous Deployment is no longer an optional extra for secure infrastructure
- The biggest avoidable holes in your security are human error and delayed patches
- Standard and open tools exists for secure CD pipelines, and are a better choice than "roll your own"
- If you make your systems easier to rebuild today, you will be happier tomorrow