Indigo.Design announced the public preview of Indigo.Design App Builder.
Security and the Twelve-Factor App - Step 12
A blog series by WhiteHat Security
November 04, 2019
The final chapter of this blog series looks at Factor 12, Admin Processes, and shares security-focused advice for this step that developers and ops engineers can follow during the SaaS build and operations stages.
Start with Security and the Twelve-Factor App - Step 1
Start with Security and the Twelve-Factor App - Step 2
Start with Security and the Twelve-Factor App - Step 3
Start with Security and the Twelve-Factor App - Step 4
Start with Security and the Twelve-Factor App - Step 5
Start with Security and the Twelve-Factor App - Step 6
Start with Security and the Twelve-Factor App - Step 7
Start with Security and the Twelve-Factor App - Step 8
Start with Security and the Twelve-Factor App - Step 9
Start with Security and the Twelve-Factor App - Step 10
Start with Security and the Twelve-Factor App - Step 11
Defining Admin Processes in the Twelve-Factor App
The final and twelfth factor focuses on admin processes and running admin/management tasks as one-off processes.
By this, 12.factor.net means that “one-off admin processes should be run in an identical environment as the regular long-running processes of the app. They run against a release, using the same codebase and config as any process run against that release. Admin code must ship with application code to avoid synchronization issues.”
Applying Security to Step 12
From a security standpoint, admin processes must be subject to the same security scrutiny as prescribed for factors I to XI. Incorporate one-off admin processes as part of product discussions and understand the security risks associated with one-off admin processes.
Industry News
January 27, 2021
ARMO announced its launch out of stealth having secured $4.5 million in seed funding from Pitango First.
January 27, 2021
CloudSphere announced the appointment of Jane Gilson as the company’s CEO successor to Patrick McNally.
January 26, 2021
HAProxy released HAProxy Kubernetes Ingress Controller 1.5.
January 25, 2021
Progress announced the new release of Progress Kendo UI, a complete collection of JavaScript UI components.
January 25, 2021
CloudNatix announced the close of a $4.5M Seed round financing led by DNX Ventures, with the participation from a new investor Cota Capital and existing investors: Incubate Fund, Vela Partners and 468 Capital.
January 25, 2021
Quali announced $54 million in new funding, co-led by Greenfield Partners and JVP.
January 21, 2021
Platform9 released Platform9 Release 5.0, with a number of new features to provide operational efficiencies for its freedom, growth, and enterprise managed Kubernetes products.
January 21, 2021
Infragistics announced the release of Infragistics Ultimate 20.2, a complete UX and UI solution for design and development teams which is fully compatible with .NET 5, Microsoft’s latest release of .NET development platform.
January 21, 2021
Couchbase Cloud is now available on Microsoft Azure.
January 20, 2021
Hitachi Vantara announced the availability of Hitachi Kubernetes Service, enabling customers to consistently and securely deploy, manage, monitor, and govern Kubernetes clusters across major cloud providers and on premises.
January 20, 2021
Internal announced the launch of an enterprise-ready app development platform for internal tools.
January 20, 2021
StackPulse announced a $20 million Series A led by GGV Capital.
