Price: $79.99 - $47.48
(as of Dec 15,2024 02:41:59 UTC – Details)

From the Publisher

From the Preface

Why We Wrote This Book

We wanted to write a book that focuses on integrating security and reliability directly into the software and system lifecycle, both to highlight technologies and practices that protect systems and keep them reliable, and to illustrate how those practices interact with each other. The aim of this book is to provide insights about system design, implementation, and maintenance from practitioners who specialize in security and reliability.

We’d like to explicitly acknowledge that some of the strategies this book recommends require infrastructure support that simply may not exist where you’re currently working. Where possible, we recommend approaches that can be tailored to organizations of any size. However, we felt that it was important to start a conversation about how we can all evolve and improve existing security and reliability practices, as all the members of our growing and skilled community of professionals can learn a lot from one another.

We hope other organizations will also be eager to share their successes and war stories with the community. As ideas about security and reliability evolve, the industry can benefit from a diverse set of implementation examples.

Security and reliability engineering are still rapidly evolving fields. We constantly find conditions and cases that cause us to revise (or in some cases, replace) previously firmly held beliefs.

Who This Book Is For

Because security and reliability are everyone’s responsibility, we’re targeting a broad audience: people who design, implement, and maintain systems. We’re challenging the dividing lines between the traditional professional roles of developers, architects, Site Reliability Engineers (SREs), systems administrators, and security engineers. While we’ll dive deeply into some subjects that might be more relevant to experienced engineers, we invite you—the reader—to try on different hats as you move through the chapters, imagining yourself in roles you (currently) don’t have and thinking about how you could improve your systems.

We argue that everyone should be thinking about the fundamentals of reliability and security from the very beginning of the development process, and integrating those principles early in the system lifecycle. This is a crucial concept that shapes this entire book. There are many lively active discussions in the industry about security engineers becoming more like software developers, and SREs and software developers becoming more like security engineers.1 We invite you to join in the conversation.

When we say “you” in the book, we mean the reader, independent of a particular job or experience level. This book challenges the traditional expectations of engineering roles and aims to empower you to be responsible for security and reliability throughout the whole product lifecycle. You shouldn’t worry about using all of the practices described here in your specific circumstances. Instead, we encourage you to return to this book at different stages of your career or throughout the evolution of your organization, considering whether ideas that didn’t seem valuable at first might be newly meaningful.

Publisher ‏ : ‎ O’Reilly Media; 1st edition (April 21, 2020)
Language ‏ : ‎ English
Paperback ‏ : ‎ 555 pages
ISBN-10 ‏ : ‎ 1492083127
ISBN-13 ‏ : ‎ 978-1492083122
Item Weight ‏ : ‎ 1.9 pounds
Dimensions ‏ : ‎ 6.93 x 1.18 x 8.9 inches

Building secure and reliable systems is crucial in today’s digital landscape where cyber threats are constantly evolving. Whether you are designing a new system, implementing one, or maintaining an existing one, following best practices is essential to ensure the security and reliability of your system.

Here are some key best practices for designing, implementing, and maintaining secure and reliable systems:

1. Conduct a thorough risk assessment: Before designing or implementing a new system, it is important to conduct a comprehensive risk assessment to identify potential vulnerabilities and threats. This will help you prioritize security measures and establish a solid foundation for building a secure system.

2. Follow security by design principles: Incorporate security considerations into the design phase of your system. This includes implementing security controls such as encryption, access controls, and secure coding practices from the outset.

3. Implement strong authentication and access controls: Use strong authentication methods, such as multi-factor authentication, to verify the identity of users accessing the system. Implement access controls to restrict access to sensitive data and functionalities based on user roles and permissions.

4. Regularly update and patch software: Keep your system up to date by applying patches and updates regularly. This will help address known vulnerabilities and protect your system from potential attacks.

5. Monitor and analyze system logs: Implement logging and monitoring mechanisms to track system activities and detect any unusual behavior or security incidents. Analyzing system logs can help you identify security breaches and take timely action to mitigate risks.

6. Conduct regular security audits and penetration testing: Regularly assess the security of your system through security audits and penetration testing. This will help you identify weaknesses and vulnerabilities that need to be addressed to enhance the security of your system.

7. Backup and disaster recovery planning: Implement regular backups of critical data and develop a comprehensive disaster recovery plan to ensure business continuity in the event of a security incident or system failure.

By following these best practices for designing, implementing, and maintaining secure and reliable systems, you can enhance the security posture of your organization and protect your data from potential threats. Building secure and reliable systems is a continuous process that requires ongoing vigilance and proactive security measures to stay ahead of evolving cyber threats.
#Building #Secure #Reliable #Systems #Practices #Designing #Implementing #Maintaining #Systems