September 2021
Beginner to intermediate
392 pages
12h 13m
Chinese
book
Google系统架构解密: 构建安全可靠的系统
by Heather Adkins, Betsy Beyer, Paul Blankinship, Piotr Lewandowski, Ana Oprea, Adam Stubblefield
Content preview from Google系统架构解密: 构建安全可靠的系统
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
234
|
第
14
章
14.6.5
引入
Breakglass
机制
在紧急情况下,可能需要绕过部署策略。例如,工程师可能需要重新配置前端来迁移故障
后端的流量。如果通过常规的
CI/CD
管线部署
,相应的代码式的配置变更可能需要很长时
间。引入
Breakglass
机制
,可以让工程师绕过部署策略迅速解决服务中断问题,有助于塑
造重视安全性和可靠性的文化(参见第
21
章
)。
由于攻击者可能会滥用紧急部署机制,所有紧急部署都必须触发警报并迅速接受审计。为
了使审计切实可行,紧急部署事件数量应控制在很小的范围内。如果事件太多,则可能无
法区分恶意活动和合法使用的情况。
14.7
重温基于威胁建模部署安全措施
如表
14-2
所示,现在可以针对以前未解决的威胁定制高级缓解措施。
表14-2:针对复杂威胁的高级缓解措施
威 胁 缓解措施
工程师部署存在已知漏洞的旧版本漏洞 在部署策略中要求代码在过去
N
天内进行安全漏洞
扫描
CI
系统配置错误
,允许基于任意源码库进行构建。
因此,恶意攻击者可以从包含恶意代码的源存储库
进行构建
CI
系统生成二进制文件来源,描述提取的来源库。
生产环境强制要求出处,证明所部署的工件构建自
经批准的源代码存储库
恶意攻击者将自定义构建脚本上传到
CI
系统
,窃取
签名密钥。然后,使用该密钥对恶意二进制文件进
行签名和部署
有验证能力的构建系统会分离特权,保证运行自定
义生成脚本的组件无权访问签名密钥
攻击者欺骗
CD
系统使用带后门的编译器或
构建工
具来生成恶意二进制文件
隔绝的构建要求开发人员在源代码中明确指定选择
的编译器和构建工具 ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.