September 2021
Beginner to intermediate
392 pages
12h 13m
Chinese
book
Google系统架构解密: 构建安全可靠的系统
by Heather Adkins, Betsy Beyer, Paul Blankinship, Piotr Lewandowski, Ana Oprea, Adam Stubblefield
Content preview from Google系统架构解密: 构建安全可靠的系统
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
恢复和善后
|
311
用户数据团队
该团队负责确定攻击者可能接触的客户信息,以及是否需要执行修正,例如更改用户密
码或重置相关会话。团队还可能需要密切跟进客户服务、法务和相关人员提出的问题。
调解团队
该团队负责研究每笔交易被抽取
0.02
美元的影响
。为了适配长期财务记录,是否需要
在数据库中追加记录?团队也可能需要密切跟进法务、财务提出的问题。
在这样的复杂事件中,通常需要在恢复过程中做出次优的选择。例如,假设团队需要切断
对公司电子邮件的访问。他们可能有几个选项,例如关闭电子邮件系统、锁定所有账户或
并行启用新的电子邮件系统。其中的每一项都会给组织带来一定影响,很可能会惊动攻击
者,而且不一定能发现攻击者起初是如何访问系统的。恢复小组和调查小组需要密切合
作,找到一条适合形势的前进道路。
18.8
小结
恢复是事件响应过程中一个独特而又关键的步骤,它需要一支由技术娴熟的专家组成的专
业团队。计划恢复时需要考虑很多方面:攻击者将如何反应?谁执行什么操作,何时执
行?要向用户传递什么?恢复过程应该是并行的,而且经过仔细规划的,并应定期向
IC
和调查团队同步。恢复工作的最终目标应始终是清退攻击者、补救危害,以及提高系统的
整体安全性和可靠性。每次入侵事件都会带来教训,有助于改善组织的长期安全状况。
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.