small modular agile secure pick 4
play

Small, Modular, Agile, Secure: Pick 4 Many components makes light - PowerPoint PPT Presentation

Dec 13, 2022 •251 likes •449 views

Small, Modular, Agile, Secure: Pick 4 Many components makes light work Andrew Sullivan at ICANN 55 March 7, 2016 asullivan@dyn.com Anycast @ ICANN 55 asullivan@dyn.com Anycast is just good Good to sink traffic topologically close to

  1. Small, Modular, Agile, Secure: Pick 4 Many components makes light work Andrew Sullivan at ICANN 55 March 7, 2016 • asullivan@dyn.com Anycast @ ICANN 55 • asullivan@dyn.com

  2. Anycast is just good Good to sink traffic topologically close to source • • Lower latency for everyone without relying on round-trip time differences among nameservers in the NS RRset • More resilient to attacks than traditional “unicast” operation • Gets more resilient the more BCP38 is deployed • Maintenance of a nameserver does not mean an outage of a named nameserver 2 Anycast @ ICANN 55 • asullivan@dyn.com

  3. Collateral damage still possible Common infrastructure or network (or both) S1 S2 Attack towards S1 S3 3 Anycast @ ICANN 55 • asullivan@dyn.com

  4. Collateral damage still possible Common infrastructure or network (or both) S1 S2 Attack towards S1 S3 4 Anycast @ ICANN 55 • asullivan@dyn.com

  5. Collateral damage still possible Common infrastructure or network (or both) S1 Request for S3 S2 Attack towards S1 S3 5 Anycast @ ICANN 55 • asullivan@dyn.com

  6. Service isolation helps Make a larger service out of small, readily-deployable components Small components are cheap and easy to replace • • Modular parts mean mix-and-match works • Unanticipated service needs easily supplied • Easy modularity means change is fast • Security profile of each component can be understood • Security problems can be contained or removed 6 Anycast @ ICANN 55 • asullivan@dyn.com

  7. Snap-together service starts easy service group Service in one container slice Service interface 7 Anycast @ ICANN 55 • asullivan@dyn.com

  8. Snap-together service grows service group Service in multiple container slices Service interface 8 Anycast @ ICANN 55 • asullivan@dyn.com

  9. Snap-together service is flexible service group Service in multiple Different containers container slices Different service Service interface 9 Anycast @ ICANN 55 • asullivan@dyn.com

  10. Snap-together service grows easily service group Service in multiple Different containers container slices Different service Service interface 10 Anycast @ ICANN 55 • asullivan@dyn.com

  11. Snap-together service: control service group controls budget Service in multiple Different containers container slices Different service Service interface 11 Anycast @ ICANN 55 • asullivan@dyn.com

  12. Security by resilience service group Service in multiple Different containers container slices Different service Service interface 12 Anycast @ ICANN 55 • asullivan@dyn.com

  13. Need more? Add them! service group Service in multiple Different containers container slices Different service Service interface 13 Anycast @ ICANN 55 • asullivan@dyn.com

  14. Start small Map image credit: http://http://www.freeworldmaps.net Not actual Dyn locations 14 Anycast @ ICANN 55 • asullivan@dyn.com

  15. Expand for demand Map image credit: http://http://www.freeworldmaps.net Not actual Dyn locations 15 Anycast @ ICANN 55 • asullivan@dyn.com

  16. Or turn up to meet flash crowds Map image credit: http://http://www.freeworldmaps.net Not actual Dyn locations 16 Anycast @ ICANN 55 • asullivan@dyn.com

  17. Strategy not for everyone You need an infrastructure approach to start with If you’re used to hand-building things, you have to completely change your • operations • If you have a couple of servers, then this won’t work • Consider a hybrid approach • If you only have a single service, makes no sense to build for many 17 Anycast @ ICANN 55 • asullivan@dyn.com

  18. THANK YOU! Anycast @ ICANN 55 • asullivan@dyn.com

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Secure Agile Development With FISMA Compliance https://www.fyrmassociates.com/ FYRM Overview

Secure Agile Development With FISMA Compliance https://www.fyrmassociates.com/ FYRM Overview

Secure Agile Development With FISMA Compliance https://www.fyrmassociates.com/ FYRM Overview Qualifications Performance Strategy Experience CPAR 4/4 Secure Agile Respected Partner CMS, DOE Knowledge Sharing FedRAMP

197 views • 16 slides
Small Modular Reactor Hanford Site Analysis Preliminary Report October 23, 2014 Small Modular

Small Modular Reactor Hanford Site Analysis Preliminary Report October 23, 2014 Small Modular

Energy Northwest Member Forum Small Modular Reactor Hanford Site Analysis Preliminary Report October 23, 2014 Small Modular Reactor Hanford Site Analysis Overview In March 2014, the state of Washington awarded TRIDEC a $500K grant to study

418 views • 9 slides
Agile Software Design 19 February, 2020 Software Design Early decisions Modular design Agile

Agile Software Design 19 February, 2020 Software Design Early decisions Modular design Agile

Agile Software Design 19 February, 2020 Software Design Early decisions Modular design Agile design Source: http://www.xkcd.com Agile Software Design Software Design Early decisions Modular design Agile design What can design mean?

1.22k views • 93 slides
Efficient and secure modular operations using the Polynomial Modular Number System (Part 1)

Efficient and secure modular operations using the Polynomial Modular Number System (Part 1)

The Polynomial modular number system (PMNS) Randomisation with the PMNS Internal randomisation using the Montgomery-like method Efficient and secure modular operations using the Polynomial Modular Number System (Part 1) ephane Didier 1 , Fangan

757 views • 26 slides
HOW BDD CAN SAVE AGILE @mattwynne | QCon 2015 | London Does agile really need saving? Scrum !=

HOW BDD CAN SAVE AGILE @mattwynne | QCon 2015 | London Does agile really need saving? Scrum !=

HOW BDD CAN SAVE AGILE @mattwynne | QCon 2015 | London Does agile really need saving? Scrum != Agile Predictability Communication Quality Small pieces Collaboration Technical discipline How does BDD help? Individuals and Interactions

843 views • 37 slides
Briefing on Small Modular Reactors Bill Borchardt Executive Director for Operations March 29,

Briefing on Small Modular Reactors Bill Borchardt Executive Director for Operations March 29,

Briefing on Small Modular Reactors Bill Borchardt Executive Director for Operations March 29, 2011 Agenda Overview Michael Johnson Advanced Reactor Program Michael Mayfield Small Modular Reactor Licensing Activities

409 views • 29 slides
geOrchestra a free, modular and secure SDI Franois Van Der Biest Florent Gravin What does SDI

geOrchestra a free, modular and secure SDI Franois Van Der Biest Florent Gravin What does SDI

geOrchestra a free, modular and secure SDI Franois Van Der Biest Florent Gravin What does SDI stand for ? Store Share Describe Spatial Discover View Data Infrastructure Extract Compose Download www.camptocamp.com / 2/26 What are

302 views • 26 slides
Idahos Role in NuScale Small Modular Reactor Deployment Testimony to Idaho LINE Commission

Idahos Role in NuScale Small Modular Reactor Deployment Testimony to Idaho LINE Commission

Idahos Role in NuScale Small Modular Reactor Deployment Testimony to Idaho LINE Commission Boise, Idaho Mike McGough, Chief Commercial Officer January 21, 2014 Agenda NuScale Background What is a NuScale Small Modular Reactor?

275 views • 27 slides
Main principles of secure OS

Main principles of secure OS

Main principles of secure OS Trusted Flexible Secure Versatile modular Internet security

490 views • 26 slides
SELLING AGILE V E S A PA L M U @ W U N D E R . U K B U S I N E S S A N D S T R AT E G Y T R

SELLING AGILE V E S A PA L M U @ W U N D E R . U K B U S I N E S S A N D S T R AT E G Y T R

SELLING AGILE V E S A PA L M U @ W U N D E R . U K B U S I N E S S A N D S T R AT E G Y T R A C K Vendor? Customer? In-house team? New to agile? Some agile? 100% agile? Questions, feedback on Twitter #SellingAgile The Story 1.

918 views • 54 slides
The Joy of Open, Agile Government Security Compliance Using F/LOSS, Agile and DevSecOps to help

The Joy of Open, Agile Government Security Compliance Using F/LOSS, Agile and DevSecOps to help

The Joy of Open, Agile Government Security Compliance Using F/LOSS, Agile and DevSecOps to help make compliance secure Fen Labalme TOC How did I get here What is CivicActions What is compliance Making compliance fun Culture

1.24k views • 89 slides
The AGILE Data Center and the First AGILE Catalog Carlotta Pittori, on behalf of the AGILE

The AGILE Data Center and the First AGILE Catalog Carlotta Pittori, on behalf of the AGILE

The AGILE Data Center and the First AGILE Catalog Carlotta Pittori, on behalf of the AGILE Collaboration 2009 Fermi Symposium 2 - 5 November 2009, Washington AGILE on PSLV-C8 Sriharikota, India The AGILE April 15, 2007 Payload: the most

853 views • 38 slides
Small Modular Reactor Hanford Site Analysis Business Sensitive Not for public release until

Small Modular Reactor Hanford Site Analysis Business Sensitive Not for public release until

Small Modular Reactor Hanford Site Analysis Business Sensitive Not for public release until after September 25, 2014 Small Modular Reactor Designs Business Sensitive Not for public release until after September 25, 2014 Small Modular

269 views • 11 slides
Security DevOps staying secure in agile projects Christian Schneider @cschneider4711 mail@

Security DevOps staying secure in agile projects Christian Schneider @cschneider4711 mail@

Security DevOps staying secure in agile projects Christian Schneider @cschneider4711 mail@ www. `whoami` Christian-Schneider.net Software Developer, Whitehat Hacker & Trainer Freelancer since 1997 Focus on JavaEE &

773 views • 59 slides
Small Modular Reactor Design and Deployment IREA 10/14/2018 www.inl.gov INL SMR Activities

Small Modular Reactor Design and Deployment IREA 10/14/2018 www.inl.gov INL SMR Activities

INL/MIS-15-34247 Small Modular Reactor Design and Deployment IREA 10/14/2018 www.inl.gov INL SMR Activities INL works with all vendors to provide fair access to the laboratory benefits INL works with industry on SMR technology and

634 views • 24 slides
Readiness For Regulating Small Modular Reactors International Nuclear Regulators Association

Readiness For Regulating Small Modular Reactors International Nuclear Regulators Association

Readiness For Regulating Small Modular Reactors International Nuclear Regulators Association September 19, 2017 Vienna, Austria Ramzi Jammal Executive Vice-President and Chief Regulatory Operations Officer Canadian Nuclear Safety Commission

522 views • 20 slides
Collateral Damage: the unintended consequences of adult justice processes Prof Nancy Loucks OBE,

Collateral Damage: the unintended consequences of adult justice processes Prof Nancy Loucks OBE,

From Care to Crime: Breaking the Cycle SASO Glasgow Conference, 9 May 2019 University of Strathclyde Collateral Damage: the unintended consequences of adult justice processes Prof Nancy Loucks OBE, Chief Executive, Families Outside and

360 views • 25 slides
How S&T use Observations, Insights and Lessons (OILs) to enhance Land Capability Alan

How S&T use Observations, Insights and Lessons (OILs) to enhance Land Capability Alan

OILing the wheels of S&T? How S&T use Observations, Insights and Lessons (OILs) to enhance Land Capability Alan Hotchkiss August 2012 UNCLASSIFIED OILs Observations - describe the conditions experienced by military forces

343 views • 22 slides
Briefing on Domestic Violence Disclosure Scheme (DVDS) (Clares Law): March 2014 James

Briefing on Domestic Violence Disclosure Scheme (DVDS) (Clares Law): March 2014 James

Briefing on Domestic Violence Disclosure Scheme (DVDS) (Clares Law): March 2014 James Rowlands, VAWG Commissioner Email: James.Rowlands@brighton-hove.gcsx.gov.uk Tel: 01273 291032 / 07557 744 660 The Domestic

305 views • 14 slides
WORTHING WOMENS AID REGISTERED CHARITY NO.1098726 Raise awareness of domestic abuse

WORTHING WOMENS AID REGISTERED CHARITY NO.1098726 Raise awareness of domestic abuse

WORTHING WOMENS AID REGISTERED CHARITY NO.1098726 Raise awareness of domestic abuse Introduction Safe in Sussex Services and aims Raise awareness of ACEs Recovery Toolkit What percentage of all reported crime relates to D/A? A. 20% B.

641 views • 24 slides
Emergency Water Supplies What You Should Know The Oregon Resilience Plan For Water &

Emergency Water Supplies What You Should Know The Oregon Resilience Plan For Water &

Emergency Water Supplies What You Should Know The Oregon Resilience Plan For Water & Wastewater Systems ResilienceNW 2012 November 2, 2012 Mark Knudson, P.E. Tualatin Valley Water District House Resolution 3 Assumes Cascadia

411 views • 29 slides
Summary of Staff Assessment Report APP203336: An application to seek pre-approval to release

Summary of Staff Assessment Report APP203336: An application to seek pre-approval to release

Summary of Staff Assessment Report APP203336: An application to seek pre-approval to release Trissolcus japonicus as a biological control agent for brown marmorated stink bug should it arrive in New Zealand JUNE 2018 The application 2 The

414 views • 13 slides
DomaCom Limited AGM Chairmans Address 15th November 2017 ASX: DCL Chairmans Address

DomaCom Limited AGM Chairmans Address 15th November 2017 ASX: DCL Chairmans Address

DomaCom Limited AGM Chairmans Address 15th November 2017 ASX: DCL Chairmans Address Opening Remarks Welcome to all our new shareholders and longstanding supporters. A big thank you to all shareholders who continue to show

228 views • 20 slides
Condition Monitoring of Oil Condition Monitoring of Oil Filled Ring Main Units Filled Ring Main

Condition Monitoring of Oil Condition Monitoring of Oil Filled Ring Main Units Filled Ring Main

Condition Monitoring of Oil Condition Monitoring of Oil Filled Ring Main Units Filled Ring Main Units FACTS FACTS FACTS FACTS Oil Filled Ring Main Units are a critical part Oil Filled Ring Main Units are a critical part Oil Filled

340 views • 18 slides

More recommend