Singapore Govware 2022
1 TopicGovernance and Automation - Distributed Apps for Hybrid Cloud Architecture
Overview This is the first of a three part series of demo and showcase created for Singapore Govware 2022 - Asia largest Cyber Security Conference. Part 1 - Governance and Automation - Distributed Apps for Hybrid Cloud Architecture Demonstrate how F5 Distributed Cloud integration with CI/CD to govern, control and automate deployment of a modern distributed apps across a hybrid cloud environment. Part 2 - F5 Distributed Cloud API Security and Discovery with Advance ML Demonstrate how F5 Distributed Cloud helps to discover and map APIs, block unwanted connection and prevent data leakage. Part 3 - F5 Distributed Cloud BOT Defense to prevent fraud and risk cause by bot automation Demonstrate how F5 Distributed Cloud helps in defense against malicious bots and ensure safe, fast and seamless user experiences for your digital assets. Learn the best ways to incorporate API security controls. Governance and Automation - Distributed Apps for Hybrid Cloud Architecture The important of a solid software release methodology Applications are essential to our daily life. It is a critical asset for all of us as well as for organisation. Hence, for organization, it is critical to ensure apps are robust, secure, fast and appealing to user. To maintain a robust, secure, fast and appealing apps, it is important to ensure those apps are frequently released in a timely manner. Apps releases need to be supported by a solid software release methodology. This demostration will showcase how an organization can leverage F5 Distributed Cloud Platform couple with various open source tools to deliver an application securely to production via Continious Integration and Continious Deployment (CI/CD) pipeline. The entire appliation delivery lifecycle follow the lifecyce from Day-0, Day-1 and Day2. Securing and operationalizing the following distributed application with hybrid edge is complex and difficult. Let’s see how F5 Distributed Cloud Platform can make it seamless and easy. Sample application - Arcadia Financial will be use for this demo. This application consist of many components/microservices that are distributed across many sites - AWS, Azure, Ruggadized hardware, Data Center1 and Data Center2. All those compoenents communicate with each other via a secure application mesh fabric (IPSEC/SSL tunnel). Security policies (e.g. Web Application Firewall, API Security and Bot management policy) are enforced and in position to secure, control and monitor traffic between all sites. Application developer can securely deploy apps onto the platform with the assurance that they are getting a consistant protections. Application Delivery Framework This framework encompasses BUILD, CHANGE and OPERATE methodology as shown below. Here is the full video demonstration. Here is the Software Development Lifecycle (SDLC) from code commit to secure image scanning to testing in stagging/dev to production releases. Pipeline will start upon code commit by software developer. CODESparks - ShipHats is a CI/CDtools that help shorten development life cycles and speed up software delivery while ensuring security and reliability. CODESparks will trigger the deployment of apps onto F5 Distributed Cloud Platform. Please refer to the video. Once application deployed, platform operator, application owner, netops, secops and developer can visualize and monitor those application from a centralized SaaS console. Below is a service graph observability obtained from F5 Console. It gave a clear visibility on where are those site located and the service interaction of those component of the apps Below shown the microservices interaction and it associated health. If any part of the microservices not healthy, color will change to amber or red. Summary of all 3 parts Part 1 - Governance and Automation - Distributed Apps for Hybrid Cloud Architecture Part 2 - API Security Strategy - Discover and map APIs, block unwanted connection and prevent data leakage Part 3 - Bot Management Strategy - Defense against malicious bots with F5 Distributed Cloud Bot Defense2.1KViews3likes0Comments