Identity Security for Software Development: Best Practices That Every Developer Must KnowКНИГИ » ПРОГРАММИНГ
Название: Identity Security for Software Development: Best Practices That Every Developer Must Know Автор: John Walsh, Uzi Ailon, Matt Barker Издательство: O’Reilly Media, Inc. Год: 2025 Страниц: 205 Язык: английский Формат: PDF, True EPUB (Retail Copy) Размер: 10.1 MB
Maintaining secrets, credentials, and machine identities in secure ways is an important, though often overlooked, aspect of secure software development. DevOps security often addresses vulnerabilities, but it neglects broader discussions like authentication, authorization, and access control, potentially leaving the door open for breaches. That's where an identity security strategy integrated in your code, infrastructure, and environments from day one can help.
In this practical book, authors John Walsh, Uzi Ailon, and Matt Barker provide conceptual frameworks, technology overviews, and useful code snippets to bridge the gap between development, IT, and security to integrate robust identity security across apps, CI/CD pipelines, Kubernetes and cloud native, hybrid and multicloud, process automation, IoT, and more.
While AI and automation accelerate software development—making it easier than ever to generate code, configure infrastructure, and deploy applications at scale—they also introduce new risks. Embedding credentials in generated scripts, configuring access policies for AI-assisted deployments, and managing machine identities across automated pipelines are all identity-related decisions that can either strengthen or weaken security. The challenge is that many developers don’t always realize they’re making security-critical choices until something goes wrong.
This book is here to help you know what you don’t know about identity security. It’s designed for developers and the dev adjacent—professionals who are code literate or at least not afraid of diving into some code. Rather than turning you into a security expert overnight, this book will uncover the gotchas, pitfalls, and hidden risks that could leave your applications exposed.
You'll learn:
What developers need to know about managing secrets and identity to build safer apps What machine identities, secrets, and credentials are--and how to secure them How to secure the software supply chain to build safer apps How identity security fits into modern software development practices
Who Should Read This Book? This book is intended for developers, engineers, and dev-adjacent professionals who are involved in building, deploying, and securing software. Whether you’re a coder just starting your journey, a seasoned developer, a DevOps engineer managing cloud infrastructure, or a security professional working with development teams, this book will help you understand identity security in the context of modern software development.
Many developers and engineers already interact with identity security—often without realizing it. As automation, AI, and cloud native technologies accelerate development, identity-related security decisions are becoming part of daily workflows. This book will help you recognize those security-related moments, understand best practices, and avoid common mistakes before they lead to security incidents.
At the same time, security professionals can use this book to gain a developer’s perspective on identity security—which will help them understand where identity risks emerge in the software development lifecycle, how development teams approach security, and how to collaborate more effectively with them to embed security into development workflows without slowing down innovation.
This book also is for anyone who wants to do the following: • Develop a strong foundation in identity security—covering authentication, authorization, secrets management, and machine identity. • Build secure, resilient software systems that integrate security into development workflows without adding unnecessary friction. • Safeguard user identities and sensitive data in modern applications. • Mitigate common identity-related vulnerabilities and security threats that affect software development. • Understand how to secure identities in cloud environments, CI/CD pipelines, and Kubernetes workloads. • Bridge the gap between security and development teams, fostering better collaboration to build secure software faster.
No matter your role, if you’re involved in writing, deploying, or securing software, this book will help you recognize and address identity security risks before they become problems.
Скачать Identity Security for Software Development: Best Practices That Every Developer Must Know
Навигация
Вход на сайт
Реклама
Identity Security for Software Development: Best Practices That Every Developer Must Know 
