Application monitoring in the land of DevSecOps
Monitoring is one cornerstone of DevOps, and DevSecOps is no different. Tracking application performance metrics is a no-brainer, but what’s the best way to track application security metrics? It’s critical to understand who is probing your applications, what they’re doing, and how far they’re getting. It’s also important to make sure you’re collecting relevant data for various stakeholders. This talk follows two typical attack scenarios facing today’s web-apps. For each scenario, we will look at what data is available, how it should be collected, and how to get it to the right people, without flooding them with useless noise. By looking at the right signals, we can reduce the time between attack and identification, and reduce the time through the stop->analyze->fix chain.