Chapter 2. Identity Security in the Modern Enterprise
Remember when ChatGPT was taken offline? In early 2023, OpenAI shut down the popular chatbot in response to a cybersecurity breach. Traced to a user authorization bug in Redis, the breach was caused by a data race condition between two message queues: if a user canceled a request within a certain timeframe, the system delivered their information to the next user who made a similar request. This information could include the user’s first and last name, email address, payment address, credit card type, and the last four digits of their credit card number and credit card expiration date1.
This example illustrates how the modern enterprise has changed the nature of identity security. Explosive growth in the software supply chain means there are more opportunities for risk. Automation, DevOps, cloud computing, the IoT, and AI are reshaping how you do your job. The demand for polyglot framework experts has outpaced the need for focused practitioners ...
Get Identity Security for Software Development now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
