Name: JavaScript Supply Chain Risks & How to Stop Them
Start: 2022-10-18T17:00:00Z
End: 2022-10-18T17:00:39.000Z
Location: BrightTALK
Rating: 0

F5 is a multi-cloud application services and security company committed to bringing a better digital world to life.​​​​​​​ F5 partners with the world’s largest, most advanced organizations to secure and optimize every app and API anywhere—on premises, in the cloud, or at the edge. F5 enables organizations to provide exceptional, secure digital experiences for their customers and continuously stay ahead of threats. For more information, go to f5.com. 



15 Min Demo: Show and Tell: How to automate SSL Orchestrator and AWS Services with the help of Teraform and Ansible  

-  Learn how to automate the deployment of SSL Orchestrator in Amazon Web Services.  
-  See how to deploy SSL Orchestrator with an L3 Inbound Topology and two L3 Services in a Service Chain.

SSL Orchestrator automation in AWS with Terraform and Ansible

5G is rewriting the rules of orchestration and connectivity by moving into Kubernetes. However, user plane functions performing service chaining can consume resources, increase bandwidth needs, and negatively impact cost.

During this session we will demonstrate how to use the F5 BIG-IP Next SPK telco gateway together with the CNF Solutions for Red Hat OpenShift. This novel approach unifies SBA across networking vendors while increasing 5G user plane performance and flexibility.

PT3: Increase 5G User Plane Performance with F5 and Red Hat OpenShift

The reality of hybrid and multi-cloud makes it challenging to create consistent security management and policies across your IT landscape. As you accelerate your cloud journey and move business critical workloads into Google Cloud to take advantage of its open frameworks, Kubernetes platform and services, and AI and ML capabilities, consider a two-pronged security approach: leveraging the inherent zero-trust nature and security features of Google Cloud for volume coverage, and complementing those defenses with F5 solutions to target more sophisticated threats. 

Join Matthew Emes, Senior Solutions Architect at F5, and Cyrus Rafii, Sr Business Development Manager at F5, to discuss how F5 and Google Cloud security solutions can work together to protect your journey and accelerate cloud adoption. 

We’ll also discuss the benefits of adding Intel QuickAssist Technology running on Google Cloud to your security strategy, to offload encryption processing and ensure performance for your applications.

Secure and Accelerate Multi-Cloud Success with F5, Google Cloud, and Intel

Most organizations are undergoing a digital transformation journey that requires them to manage and operate distributed applications across different environments – public clouds, data centers, and edge, according to the F5 2023 State of Application Strategy (SOAS) report. But these distributed deployments add operational complexity and cost, obscure visibility, and increase the surface area for potential cyberattacks. To properly address these challenges, it requires a comprehensive approach to connecting and securing multiple clouds and networks.

Join F5 and GigaOm for an educational conversation about the massive job of connecting – and securing – multiple clouds. Industry expert analysts will discuss the latest trends, challenges, and best practices when it comes to meeting the needs of traditional and modern apps—without increasing complexity or losing granular control and necessary visibility.

In this webinar, we’ll cover:

-  The challenges of managing hybrid and multi-cloud landscapes
-  Key requirements for multi-cloud networking success
-  Security approach in multi-cloud networking

Exploring the Latest Trends in Securing Multi-Cloud Networks with F5 & GigaOm

Enterprises use microservices and containers to develop applications that scale across multi-cluster environments. These distributed multi-cluster architectures create complexity due to limited visibility that can increase risks to security and performance. 

Our demonstration will show how F5 Container Ingress Controller for Red Hat OpenShift can deliver highly scalable, declarative administration of F5 BIG-IP to improve app development and performance with visibility into OpenShift app health.

PT 2: Scale Red Hat OpenShift Deployments with F5 Container Ingress Services

Join this 15 min demo.

Enterprises have embarked on a journey towards edge to offer their customers low latency, customized experiences based on user location and rapidly transform their edge sites such as factory floors, manufacturing or health care facilities with innovative applications to drive growth objectives. 
 
As part of this journey, some of the apps or parts of the app front end that are historically hosted at the Cloud Edge (Private or Public Cloud) are moving closer to the users at the Network Edge for reduced latency, customized experience for users based on their location, with improved security posture. 
 
With F5 XC, customers can now deliver apps both at the Cloud Edge or the Network Edge using F5 XC Regional Edges backed by a global private network to accelerate Enterprise Edge Transformation.

PT 2: Edge Demo Series: Deploy & Deliver apps at the Network Edge

Event driven security offers an innovative approach to addressing today’s sophisticated threat landscape. Real-time event monitoring and automation can identify and respond to potential threats proactively – before they can cause damage.
During this session, we will explore the key concepts of event driven security, its benefits, including improved efficiency and response time, and how to overcome challenges. We will also show a security-focused demo using F5 and Event-Driven Ansible.

PT1:  Event-Driven Automation and Security with F5 and Red Hat Ansible

Dealing with multiple applications in a micro-service architecture means you’re probably contending with a fragmented environment that’s nearly impossible to manage, secure, and operate efficiently.  
In this follow-up to webinar Multi-Cloud Networking Traffic Flow Challenges, we’ll show you what multiple traffic flows look like for a common enterprise and how to solve its traffic flow issues. We’ll also demonstrate the benefits of – and how to configure – proxy architectures for a multi-cloud environment.

Part 3 of 3: Implement a Multi-Cloud Strategy to Manage Traffic Flow

Join this 15 min demo:

F5 Distributed Cloud (XC) enables customers to discover & deliver apps from the Public/Private Cloud Edge to users or applications with a consistent deployment and operational model no matter where the apps are deployed – public or private cloud.  
 
For most enterprise customers embarking on a journey towards delivering apps at the edge or simply transforming legacy application delivery architectures starts with F5 XC Customer Edge sites deployed as instances in public and/or private cloud locations. With a consistent operational and deployment model in any cloud, F5 XC CEs can discover applications in any Kubernetes environment and securely deliver them to users and applications within the enterprise cloud boundary or to public internet with WAF, API, Bot protection capabilities.

PT1: Edge Demo Series: Deploy & Deliver apps at the Public/Private Cloud Edge

As you move your cloud strategy to a multi-cloud environment, you may be losing visibility into how your various containers, microservices, and technologies are performing. And possibly leaving your systems open to errors, breaches, and attacks. 

In this follow-up to webinar Adopting Container-as-a-Service for Hybrid Cloud Security, this demonstration will walk you through getting visibility into Kubernetes components, tapping into automatic discovery of Kubernetes workloads, and securing multi-cloud environments at scale.

Part 2 of 3: Solving Hybrid Cloud Security with Container-as-a-Service

Join F5 experts to learn how to gain the observability, security, and agility you need to compete in a complex hybrid and multi-cloud digital world.

Apps and APIs span every generation of architecture—from monoliths to microservices and from client-server to mobile—across data centers, clouds, and at the edge. Organizations strive to achieve digital resiliency, yet 9 out of 10 companies that operate in multi-cloud environments are struggling to maintain a consistent security posture.

In this webinar, you'll learn:

-  The challenges of securing the enterprise architecture for digital business.
-  How the right solutions protect all apps and APIs—legacy and modern— from core to cloud to edge.
-  Best practices for deploying comprehensive protection and consistent security that unleashes innovation and digital velocity.

Application Security for a Hybrid and Multi-Cloud Digital World

In this follow-up to webinar Securing the Modern Application Framework, our demonstration will show how F5 Distributed Cloud helps secure modern application deployment and walk you through critical security configurations from client to application.

Join the FS Distributed Cloud team in this three-part demo series that takes a deeper dive into topics from earlier webinars (linked below). These 30-minute demonstration-led sessions show you how to launch solutions to today's biggest multi-cloud networking challenges. You'll walk away with a clearer understanding of what it looks like to adopt solutions that solve your traffic flow issues, offer agile and flexible security, and enable more efficient operations.

Register today

Part 1 of 3: Deploy API-First Security Across Your Applications

Most applications today are no longer hosted in central locations but in multiple clouds and environments. This allows for better service to users, but it also requires routing traffic to the closest data center. This is where DNS load balancing can offer critical support, particularly when it comes to performance and user experience.

Join us for an F5 expert-led webinar to learn how and why DNS load balancing makes sense for today’s digital world – and specifically why F5 Distributed Cloud DNS Load Balancer makes the most sense for customers of F5 Distributed Cloud Services. 

In this webinar, we’ll cover:

-  Get split load across compute instances
-  Automatically detect primary site failure
-  Automate zero touch failover
-  Gain built-in DDoS protection and faster performance

Why DNS Global Server Load Balancing Is Necessary in 2023

Join F5 Labs threat researcher Sander Vinberg for the latest vulnerability intelligence from F5 Labs. This talk will begin at the tactical level by exploring CVE targeting trends, including a recent focus on IoT devices. Sander will also cover the Exploit Prediction Scoring System, an open-source ML system for forecasting vulnerability exploitation.

We will unpack how the system works, how F5 contributes to it, and how best to use it to provide insight into your own vulnerabilities and risks. The talk will conclude with an examination of the long-term future of vulnerability management, referencing selected findings from a recent report on the evolving CVE landscape.

Through this talk, attendees will learn:

-  Which vulnerabilities attackers are prioritizing in 2022 and early 2023
-  Features, strengths, and weaknesses of the Exploit Prediction Scoring System
-  How changes to vulnerability publication may impact the future of the CVE system

Vulnerability Intelligence: Near Past and Distant Future

Most organizations today have apps and APIs deployed across multiple different architectures as choosing the right environment for each application —a specific public cloud, edge location, and/or on-premises data center— is important to best serve the needs of the business. However, that flexibility comes at a high price: managing complex, disparate environments, significantly increased operational complexity and cost, loss of end-to-end visibility into the health and performance of digital services, and an exponentially expanding surface area for potential cyberattacks. These distributed environments represent a new normal, so it’s critical to mitigate the operational complexity that accompanies them.  
 
Join the conversation to hear answers to hard-hitting questions about making distributed environments easier to connect, manage and secure. 
 
Join the webinar to learn: 
 
-  What is secure multi-cloud networking? 
-  How are organizations doing this today? 
-  What issues does this current approach create? 
-  How to deliver and connect apps across disparate environments seamlessly and securely 
-  How to ensure intent based access and protection for your distributed apps 
 
Learn more, register today

Keys to Making Distributed, Multi-Cloud App Environments Easier to Manage

In this Roundtable, F5 and Microsoft will discuss the following:
-  How to better secure your Azure AKS clusters with NGINX Plus Ingress Controller and NGINX App Protect WAF & DoS.
-  Leverage NGINX Plus Ingress Controller Open ID Connect (OIDC) / JSON Web Tokens (JWT) for authentication in AKS.
-  Improve resiliency and scalability in AKS and support self-service (RBAC) with NGINX Plus Ingress Controller.

As the industry continues to “shift left” when it comes to security, having security running at more levels of your infrastructure is increasingly important. In this discussion, the Microsoft and F5 NGINX teams will talk about how you can improve your security posture by leveraging NGINX Plus Ingress Controller and App Protect in your AKS environment.

Security is essential in your infrastructure and your home – and we’d like to help with both.

Microsoft & F5 : Securing Kubernetes in Azure with AKS & F5 NGINX

F5's SaaS services delivery platform, F5 Distributed Cloud, has expanded. We'll answer common customer questions like: How does this SaaS platform work with other F5 products and services? What best practices help securely deliver my applications? And we'll look at how pairing F5 Distributed Cloud Services with your existing security services can help you become an application security hero in your organization.

In this session, we will: 
-  Explore application security features with F5 Distributed Cloud to accelerate security delivery and embrace operational consistency.
-  Cover key security practices that should be in every application delivery scenario.
-  How can operations be maintained, the true test of sustained security.

Becoming an Application Security Hero with F5 Distributed Cloud Services

As organizations increasingly adopt hybrid architectures and microservices, the number of APIs utilized within their ecosystems continues to grow at an exponential rate. This phenomenon, known as API sprawl, poses significant challenges in terms of security, governance, and efficiency. But of them all, API security might require the most urgent response. 

For organizations trying to secure their APIs, multi-cloud complexity and difficulty enforcing consistent security top the list of challenges according to F5’s State of Application Strategy Report (2023). To address API sprawl, organizations need to adopt a more holistic app and API security strategy for their organization including components that deliver runtime protection, posture management, and help integrate security and code testing earlier in the software development lifecycle. 
 
Join the conversation to hear Joshua Haslett, Ian Dinno, and David Remington's answers to hard-hitting questions about API sprawl, management and security.

Untangling APIs: Addressing Sprawl and Securing Your Digital Ecosystem

We've seen a recent proliferation of client-side attacks, thanks to an increase in malicious actors exploiting the vast attack surface created by today’s decentralized web applications. With 70% of the code in your web apps coming from third-party sources, it’s nearly impossible to identify and manage scripts running on your site – and threat actors know it. 

In this webinar, you’ll learn:
-  How third-party shadow code puts you at risk for attacks
-  Why client-side attacks are a security, fraud, and compliance challenge
-  What you can do to protect your customers from exposure
-  Why filling your client-side security gap is a business imperative

JavaScript Supply Chain Risks & How to Stop Them

Client Side Defense

Prevent PII

formjacking

fraud

compliance risk

Malicious Activity

Ecommerce

IT Security

Cyber Attacks

Cyber Security

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

The storage community on BrightTALK is made up of thousands of storage and IT professionals. Find relevant webinars and videos on storage architecture, cloud storage, storage virtualization and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Storage

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

JavaScript Supply Chain Risks & How to Stop Them

Presented by

About this talk

More from this channel