September 2021
Beginner to intermediate
392 pages
12h 13m
Chinese
book
Google系统架构解密: 构建安全可靠的系统
by Heather Adkins, Betsy Beyer, Paul Blankinship, Piotr Lewandowski, Ana Oprea, Adam Stubblefield
Content preview from Google系统架构解密: 构建安全可靠的系统
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
294
第 18章
恢复和善后
撰写人:
Alex Perry
、
Gary O
’
Connor
、
Heather
Adkins
和
Nick Soda
为避免服务中断对用户造成影响,系统需要能快速地从安全性和可靠性的相关事件中
恢复。然而,从安全性事件中恢复时,有一个关键的不同点:攻击者。即便系统正在
恢复,一位坚持不懈的攻击者可随时持续访问或重新进入你的环境。
本章中将深入探讨有关从攻击中恢复的知识。设计、实现和维护系统的人员需要了解
它们。从事系统恢复工作的人员通常不是专业安全人员,而是构建受影响的系统并每
天操作它们的人。本章中涉及的教训和示例阐明了如何在恢复过程中阻止攻击者,并
将一探后勤、时间线、计划和恢复的启动阶段。本章中还探讨了关键权衡点,例如何
时中断攻击活动,以及何时允许他们留在系统中以便了解更多有关信息。
如果组织遭遇严重事件,你是否知道如何恢复?谁来进行恢复,他们知道该做什么决定
吗?《
Google SRE
工作手册》的第
17
章
和《
SRE
:
Google
运维解密》的第
9
章讨论了预
防和管理服务中断的实践。其中的许多做法也与安全相关,但从安全攻击中恢复涉及独特
的步骤,尤其是当事件涉及活跃的恶意攻击者时(参见第
2
章)
。出于这个原因,本章一
方面提供了处理多种恢复工作的概述,另一方面重点强调了恢复工程师对安全攻击需要了
解的知识。
正如本书第
8
章和第
9
章中所讨论的那样
,遵循良好设计原则构建的系统可以抵御攻击,
而且很容易恢复。无论系统是单个计算实例、分布式系统还是复杂的多层应用程序,情况
都是如此。完善的体系必须搭配危机管理策略才能促进恢复。如前一章所述 ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.