Loading…
BSidesSF 2020 has ended
Back To Schedule
Monday, February 24 • 11:35am - 12:00pm
The GCP metadata API; security considerations, vulnerabilities, and remediations

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Some folks know about the AWS metadata API and its security implications. Here I'll talk about the GCP metadata API and its security implications. GCP has extra protections, but a lot more at stake. I'll cover ways to attack and defend the GCP metadata API, and the risk it brings to your org.

Speakers
DA

Dylan Ayrey

I'm a Senior Security. I've been heavily involved in the open source community for a few years, and I've been doing my best to bring security practices into the cloud/devsecops world
AD

Allison Donovan

Cruise
Allison Donovan is a security researcher who specializes in cloud-based platforms and devices. She is currently employed as a Senior Infrastructure Security Engineer at Cruise, where she secures cloud-based environments at scale, and previously she worked at Microsoft on mobile application... Read More →


Monday February 24, 2020 11:35am - 12:00pm
Theater 16 (IMAX) AMC at Metreon

Attendees (99)