In this episode, Sven Johann hosts Sam Newman, the author of the first Microservices book, to talk about security in the world of Microservices. They discuss why and where it is different to security in a monolithic architecture and why developers must care. They start with automatically rolling out passwords, credentials and API keys in a secure way and continue with patching containers and secure base images. They then continue with  automatically update (transitive) dependencies if they have vulnerabilities. They close the conversation with discussing authorisation and authentication using gateways, proxies and service meshes.

Sam Newman on Insecure Transit – Microservices Security

Conversations about Software Engineering (CaSE) is an interview podcast for software developers and architects about Software Engineering and related topics. We release a new episode every three weeks.

Technology

Tech News

Podcasting

Gadgets

Software How-To

Aino explains to Sven what skills are required to make meetings more successful. They talk about
the different roles of meeting attendees. They continue with the thinking process to organize a
meeting: do we need it at all? What is the expected outcome? Who should be invited? How long
it should take? Do we need preparation for the attendees? Icebreakers? How do we craft an
agenda? Then they discuss how to steer a meeting as a meeting facilitator, how to engage
(quite) attendees and how to deal with negative people. Finally, they close with methods on how
to improve your moderator skills.

Aino Corry on Better Tech Meetings

Solid is a specification that lets people store their data securely in decentralized data stores called Pods. But why do we want to keep our data decentralized? What problems does Solid solve? In this episode, Angelo Veltens explains to Lucas Dohmen the advantages (but also potential disadvantages) of this project.

Angelo Veltens on Solid

Stefan Tilkov talks to Mark Seemann about his book “Code that fits in your head”, heuristics about software engineering, and the role of craftspeople and engineers. They dive into three selected topics: Vertical slices, triangulation, and rhythm.

Mark Seemann on heuristics for software engineering

How do you enable a developer to quickly start the development of business logic of a new microservice without losing too much time on setting up everything else like monitoring, tracing, dependency management, security, configuration and much more. After the motivation, they move from service templates to service chassis, continue with governance as code and close with the possible need of product management skills to keep the chassis and the derived services current.

Chris Richardson on Service Templates and Service Chassis

Sven Johann talks to Adam Tornhill about the link between how organizations write code and how teams work together. Adam Tornhill can make this link visible to help improve your team’s code and your organization's work. The interview is based on Adam's book "Software Design X-Rays".

Sam Newman on Insecure Transit – Microservices Security

Download our free app to listen on your phone