Automation Flashcards
automation vs Orchestration
Automation: task based. each task for one job, p.e. send automated emails.
Orchestration is the automation of the automations: it puts all the tasks together. P.e. send email out and put it on to-do list to reply
Continuous Integration/Continuous Deployment 4 Stages: CI/CD (4 Stages)
Continuous Integration/Continuous Deployment 4 Stages:
Development
Testing/Integration
Staging
Production
Continuous Integration
Code is constantly written & merged to central repository
Devs can work seamlessly without stepping on each other’s toes
Helps ensure the app builds correctly & doesn’t introduce new issues
Every coder integrates small code change. Then, AUTOMATIC test is run to check if code has bugs. If test passes, it´s integrated, otherwise change it.
So u try to catch bugs as soon as you can
Continuous Delivery
Continuous Delivery is the ability to get changes of all types—including new features, configuration changes, bug fixes and experiments—into production, or into the hands of users, and automate testing of code and its release
Software deployment
Continuous Deployment
Software deployment includes all of the steps, processes, and activities that are required to make a software system or update available to its intended users. Today, most IT organizations and software developers deploy software updates, patches and new applications with a combination of manual and automated processes.
Continuous:
Automatically deploy to production
Focuses on automated testing and release of code to get it into the production environment more quickly
DevOps
An organizational culture shift that combines software development and systems operations by referring to the practice of integrating the two disciplines within a company
Operations and developers can build, test, and release software faster and more reliably
DevSecOps
A combination of software development, security operations, and systems operations by integrating each discipline with the others
DevSecOps utilizes a shift-left mindset
• Integrate security from the beginning
• Test during and after development
• Automate compliance checks
Infrastructure as Code: IaC & Snowflakes
Infrastructure as code (IaC) means to manage your IT infrastructure using configuration files.
Before IaC, IT personnel would have to manually change configurations to manage their infrastructure.
With IaC, your infrastructure’s configuration takes the form of a code file. Since it’s just text, it’s easy for you to edit, copy, and distribute it.
Snowflake System:
- Over time, each environment becomes a snowflake, that is, a unique configuration that cannot be reproduced automatically.
- Lack of consistency leads to security issues and inefficiencies in support
Infrastructure as Code: Idempotence
A property of IaC that an automation or orchestration action always produces the same result, regardless of the component’s previous state
Fake Telemetry
Machine learning can interpret big data to identify the invisible
Attacker will add their own fake telemetry to convince AI that malware is benign
Software-Defined Visibility: SDV
Says that you must see the traffic to see whats going on and secure your data (find blindspots, hidden threads…)
Continuous Monitoring
Check for a particular event, then react
Continuous Validation
Automatically validate a configuration before going live
Perform ongoing automated checks
