Description: Automating application security at any level can prove to be very helpful in continuous delivery environments. We will discuss the techniques used at Twitter to keep up with this pace including but not limited to: automated workflows integrated w/ static/dynamic analysis, dynamic scanning (custom/vendor), manual code reviews, framework improvements, libraries, etc. This will include our lessons learned in the last year and how it fits in with our transition to a scala backend. Our documented wins and fails in each iteration along the way will paint a picture of our progress. This is a slightly technical discussion that is meant to paint the "big picture" and how all the pieces fit together, including what is/will be open sourced. It will have some language specific tools, but the content is meant to be generic to any technology stacks/shops.
For More Information Please Visit : - http://shakacon.org/
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.