Config Management Camp

5 - 7 February, 2018

Gent, Belgium

Prove It! Assertion or it Didn't Happen (in Cloud Networking)

Andrew Martin

Changing network configuration to comply with security or deployment requirements is a high risk and error-prone affair. Are the previous routes still active? Is least-privilege still maintained? Or did we just open our infrastructure to t he world in a fit of pique or oblivion? In this talk we describe how to assert network topology, configuration, and infrastructure access in a cloud environment to provide a minimum viable safety net for infrastructure changes, covering:

  • network routing
  • ingress and egress
  • authentication and authorisation
  • continuous security
  • test frameworks and CI

About Speaker

Andrew is a co-founder at and DevOps Lead at the UK Home Office, with a strong test-first engineering background gained developing and deploying high volume web applications. Proficient in application development and systems architecture and maintenance, he is comfortable profiling and securing every tier of a bare metal or virtualised web stack, and has battle-hardened experience delivering containerised solutions to enterprise clients.