Five tips to secure your app (Firebase Summit 2018)

Показать описание

In a world where security breaches make the front page of newspapers, how do you ensure high velocity without compromising application security? In this talk you'll learn about common application threat models, and how you can use the tools provided in Firebase to secure your apps. We'll share best practices for writing Security Rules, and how to configure IAM for least privilege access. We'll also talk about all the work Firebase automatically does for you to keep your app secure.

Presented by: Mike McDonald and Todd Kerpelman

Give us your feedback in the comments below and help shape the future of Firebase.

#FirebaseSummit event: Firebase Summit 2018; re_ty: Publish; product: Firebase - Cloud Functions, Firebase - Security Rules; fullname: Mike McDonald, Todd Kerpelman;

Рекомендации по теме

Комментарии

Listened to it at 2x speed. Was amazing.

joereem

Good stuff. Real gem there in tip #8 about using cloud functions for security and to transform "simple" client documents that describe a desired action

tedmcfadden

Great presentation, covers a lot in 25 minutes. BTW: Code at 12:02 may let through the case when user updates status but also would then allow updates to other properties on the document (That we probably don't want to happen) ? I think it should also be checking other properties of the document are not being changed?

mysomervda

Is Cloud Firestore a good selection for a bank account? Can it be safe and reliable to save people's money which is a number to the Cloud Firestore? My concern is reliability and security. Any suggestions?

belqisshida

Awesome, guys! Yes, Todd is cool and I like Mike too.

shauryaaher

"Five" rules ^_^.
Great stuff, thou.

Quetzalcoatl

Is it safe to assume that my client code is safe if authentication is required to access Firebase Database?
If a user makes changes to my app the signature will also change and this will make it impossible for the user to log-in into my app using firebase am i right?

tiagooliveira

Can't hide the config on client side, it's client side, anybody can have that

guitark

You should've said from the start to see the video on 0.75 speed
xD

neryortez

But you don't say, how to secure decompiling app and hack my base( #0)

monstera

Rules have become complicated than the actual app 😂

MaheshKumar-lqxm

Five tips to secure your app (Firebase Summit 2018)

Five tips to secure your app (Firebase Summit 2018)

5 Tips to secure your iPhone

5 tips to Protect & Secure Your WordPress Website 🔒

5 TIPS TO KEEP YOUR ONLINE ACCOUNTS SECURE

Secure Your Cyber Space:5 Best Tips to be Safe Online🛡️

Top 5 tips to secure your online meetings | Online meetings| Cyber security awareness training video

Five tips to secure your home this holiday season

5 tips for staying secure

5 Critical Cyber Threats Remote Workers Need to Know About Right Now!

5 Easy Tips to Secure your Android smartphone

5 tips to secure your car!

Follow these 5 tips to #secure your iphone and ipad devices.

5 Essential Tips to Protect and Secure Your WordPress Website 🔒

12 Ways to Protect Your Home While You’re Away

5 Simple Steps to Secure Your Computer | Essential Cybersecurity Tips for Small Businesses

Five Tips to secure your app (Firebase Summit Extended Bangkok 2018)

5 Easy Ways Hackers Can’t Touch You!

#shorts 5 tips to secure your phone banking

Secure Passwords: Top Five Tips

5 Tips to Secure Your Home Devices

Keep Your Data Secure: 5 Tips to Protect Against Ransomware

Top 5 Tips: Secure Your iPhone from Theft

Top 5 Tips to Secure Your WiFi Network! 🔒📶 #CyberSecurity #WiFiSafety' #techtips #cybersecurit...

5 Tips to Secure and Protect your Website