Reinhard Kugler

Security Challenges of Breaking A Monolith

How can a single vulnerability in one container compromise your entire system? Discover the hidden security risks of breaking up a monolith.

Security Challenges of Breaking A Monolith
#1about 7 minutes

Understanding the problems with a monolithic architecture

A monolithic video processing application faces challenges with scaling, high costs from idle power, and a lack of reliability.

#2about 2 minutes

Decomposing the monolith into a microservice architecture

The application is broken down into distinct services like an API, a message broker, a transcoding worker, and S3 storage.

#3about 2 minutes

Securing container images and the software supply chain

The initial step of containerization reveals that official base images often contain known vulnerabilities, highlighting supply chain risks.

#4about 4 minutes

Defining trust boundaries for authentication and authorization

Breaking down the application creates new trust boundaries between frontend and backend components, requiring robust authentication and authorization.

#5about 8 minutes

Using bucket policies and pre-signed URLs for S3 access

AWS S3 access is controlled using bucket policies for broad rules and pre-signed URLs for providing temporary, specific access to objects.

#6about 3 minutes

Preventing malicious uploads with input validation

An AWS Lambda function can be triggered on file uploads to S3 to perform validation and prevent attackers from hosting malicious content.

#7about 5 minutes

Analyzing the impact of a container vulnerability

A vulnerability in a transcoding library like FFmpeg can be exploited through a malicious file, leading to code execution and access to secrets within the container.

#8about 2 minutes

Comparing security trade-offs of monoliths vs microservices

While microservices increase the attack surface and complexity, they offer better isolation, making privilege escalation more difficult than in a monolith.

#9about 11 minutes

Q&A on microservice architecture and security

The speaker answers audience questions about using AI in security, starting new projects, and identifying threats in a microservice architecture.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Malware campaigns, cloud latency, and government IT theft
01:06 MIN

Malware campaigns, cloud latency, and government IT theft

Fake or News: Self-Driving Cars on Subscription, Crypto Attacks Rising and Working While You Sleep - Théodore Lefèvre

Technical challenges of shipping a cross-platform browser
09:38 MIN

Technical challenges of shipping a cross-platform browser

Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof

Crypto crime, EU regulation, and working while you sleep
01:15 MIN

Crypto crime, EU regulation, and working while you sleep

Fake or News: Self-Driving Cars on Subscription, Crypto Attacks Rising and Working While You Sleep - Théodore Lefèvre

Comparing the security models of browsers and native apps
05:01 MIN

Comparing the security models of browsers and native apps

Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof

The security challenges of building AI browser agents
06:33 MIN

The security challenges of building AI browser agents

AI in the Open and in Browsers - Tarek Ziadé

Prompt injection as an unsolved AI security problem
07:39 MIN

Prompt injection as an unsolved AI security problem

AI in the Open and in Browsers - Tarek Ziadé

How a broken frontend culture impacts the web
04:02 MIN

How a broken frontend culture impacts the web

WeAreDevelopers LIVE – Frontend Inspirations, Web Standards and more

The security risks of AI-generated code and slopsquatting
05:55 MIN

The security risks of AI-generated code and slopsquatting

Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2

Featured Partners

Related Videos

See all videos
Single Server, Global Reach: Running a Worldwide Marketplace on Bare Metal in a Cloud-Dominated World50:06

Single Server, Global Reach: Running a Worldwide Marketplace on Bare Metal in a Cloud-Dominated World

Jens Happe

You can’t hack what you can’t see29:34

You can’t hack what you can’t see

Reto Kaeser

DevSecOps: Security in DevOps33:20

DevSecOps: Security in DevOps

Aarno Aukia

Architecting API Security47:34

Architecting API Security

Philippe De Ryck

Kubernetes Security - Challenge and Opportunity42:45

Kubernetes Security - Challenge and Opportunity

Marc Nimmerrichter

Answering the Million Dollar Question: Why did I Break Production?29:38

Answering the Million Dollar Question: Why did I Break Production?

Luís Ventura

Walking into the era of Supply Chain Risks37:36

Walking into the era of Supply Chain Risks

Vandana Verma

Microservices? Monoliths? An Annoying Discussion!25:05

Microservices? Monoliths? An Annoying Discussion!

Eberhard Wolff

Related Articles

View all articles
BB
Benedikt Bischof
Why You Shouldn’t Build a Microservice Architecture
Welcome to this issue of the WeAreDevelopers Live Talk series. This article recaps an interesting talk by Michael Eisenbart who talks about the pros and cons of microservice architecture.‍About the speaker:‍Michael has been working for Bosch as a sof...
Why You Shouldn’t Build a Microservice Architecture
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?

From learning to earning

Jobs that call for the skills explored in this talk.