This time we have two guests: Maria and Alan which going to share their experience on dealing with network security and application security.
Building a secure Java app is possible (Maria Kharlamb) Securing Java web applications from inside and outside threats is a challenging task. In enterprise projects, it’s always not enough time to think about security and requirements. You always have certain limitations for different sources. So what? You skip caring about security. If you’ve always struggled to understand: 1) how to define if your app is secure; 2) what steps to follow to make sure your code and customers are safe, this talk is exactly for you! We’ll go through top vulnerabilities and review ways to prevent and fix their appearing with a simple web demo project. Based on simple examples you’ll see that making java app secure is an achievable goal even if the resources of your project are limited. We’ll end up with a brief overview of automatic tools that can help to identify vulnerabilities as well as maintain application security on a regular basis. Go and make your app secure!
Demystifying Certificates and TLS For Java Developers (Alan Scherger) What exactly is an SSL Certificate? Do rolling out tools with mTLS enabled seem impossible? Can you test that your infrastructure tools properly uphold the security claims they make regarding mTLS? Does the thought of rotating the certificate authority your service mesh rely on scare you? In this talk, we will begin our journey looking at the RFCs behind these technologies. Next, we will use OpenSSL, CFSSL, and mkcert to validate what we have learned about X509 v3 certificates. We will then bootstrap Consul to quickly demonstrate server, client, and browser usages of certificates. After that, we’ll do a deep-dive into how Kafka uses certificates to secure its brokers and clients, and possibly (KIP-515) its connections to Zookeeper.
Организатор: Rockstar Night Dev Club
Rockstarnight is independent community club for knowledge sharing in software development. It organized by Kyiv JUG, Kyiv KUG and Rector followers.