Building cloud-native Java applications is undoubtedly awesome.
However, it comes with undeniable fresh risks. Next to your own code, you are relying on so many another things.
Blindly depending on open-source libraries and Docker images can form a massive hazard for your application. The incorrect package can introduce severe vulnerabilities into your application, exposing your application and your user's data.
In the talk below we’ll show common threats, vulnerabilities, and misconfiguration including the late disclosed issues in Log4j. Most importantly, you’ll learn how to defend your application with actionable remediation and best practices.
Lecture took place on Thursday 23rd June 2022 at 10:30 in area 1
Brian Vermeer is simply a elder Developer Advocate for Snyk, Java Champion, and Software Engineer with over a decade of hands-on experience in creating and maintaining software. He is passionate about Java, (Pure) Functional Programming and Cybersecurity. Brian is simply a JUG leader for the Virtual JUG and the NLJUG. He besides co-leads the DevSecCon community and is simply a community manager for Foojay. He is simply a regular global talker on mostly Java-related conferences like JavaOne, Devnexus, Devoxx, Jfokus, JavaZone and many more. too all that, Brian is simply a military reserve for the Royal Netherlands Air Force and a Taekwondo Master / Teacher.
#IT #Development #SoftwareDevelopment
