商品描述
In today's cloud native world, where we automate as much as possible, everything is code. With this practical guide, you'll learn how policy as code (PaC) provides the means to manage the policies that guide our responses as well as the systems we maintain--Kubernetes, cloud security, software supply-chain security, infrastructure-as-code, and microservices authorization, among others.
Author Jimmy Ray, a developer advocate on the Amazon Web Services Kubernetes team, provides a practical approach to integrating PaC solutions into your systems, with plenty of real-world examples and important hands-on guidance. DevOps and DevSecOps engineers, Kubernetes developers, and cloud engineers will understand how to choose and then implement the most appropriate solutions.
- Understand PaC theory, best practices, and use cases for security
- Learn how to choose and use the correct PaC solution for your needs
- Explore PaC tooling and deployment options for writing and managing PaC policies
- Apply PaC to DevOps, IaC, Kubernetes, and AuthN/AuthZ
- Examine how you can use PaC to implement security controls
- Verify that your PaC solution is providing the desired result
- Create auditable artifacts to satisfy internal and external regulatory requirements
商品描述(中文翻譯)
在當今的雲原生世界中,我們盡可能地自動化,一切皆為代碼。透過這本實用指南,您將學習到政策即代碼(Policy as Code, PaC)如何提供管理指導我們回應的政策以及我們維護的系統的手段,包括 Kubernetes、雲安全、軟體供應鏈安全、基礎設施即代碼(Infrastructure as Code, IaC)和微服務授權等。
作者 Jimmy Ray 是亞馬遜網路服務(Amazon Web Services)Kubernetes 團隊的開發者倡導者,他提供了一種將 PaC 解決方案整合到系統中的實用方法,並附有許多真實世界的範例和重要的實作指導。DevOps 和 DevSecOps 工程師、Kubernetes 開發者以及雲工程師將了解如何選擇並實施最合適的解決方案。
- 了解 PaC 理論、最佳實踐及安全使用案例
- 學習如何選擇和使用適合您需求的 PaC 解決方案
- 探索 PaC 工具和部署選項,以撰寫和管理 PaC 政策
- 將 PaC 應用於 DevOps、IaC、Kubernetes 及身份驗證/授權(AuthN/AuthZ)
- 檢視如何使用 PaC 實施安全控制
- 驗證您的 PaC 解決方案是否提供所需的結果
- 創建可審計的文檔,以滿足內部和外部的監管要求
