Introduction

Welcome back to our application security module. In this article, we explore critical aspects of application security as part of a comprehensive defense-in-depth strategy. Our lessons have progressively covered various security layers, including physical security, identity and access management, perimeter security, network security, compute security (such as host and container security), and now, application security. Below is the defense-in-depth diagram illustrating these multiple layers:

The image illustrates a "Defense in Depth" strategy using concentric circles, each representing different security layers such as Physical Security, Identity & Access, Perimeter, Network, Compute, Application, and Data. Each layer is associated with specific security measures like DDoS Azure Firewall, Identity Management, and Microsoft Defender for Cloud.

A key element within application security is the Key Vault. In this module, we will delve into several essential topics, including:

Microsoft Identity Platform
Azure AD Application Scenarios
App Registration (with a focus on service principals, as briefly introduced in our previous lesson)
Microsoft Graph Permissions
Enabling Managed Identities
Deploying Web App Certificates (with an emphasis on securing AMP services)

The diagram below outlines the primary topics we will cover:

The image lists topics related to app security, including Microsoft identity platform, Azure AD application scenarios, app registration, Microsoft Graph permissions, enabling managed identities, and deploying web app certificates.

For a detailed understanding of these topics, consider reviewing related articles on Microsoft Identity Platform and Azure AD Application Scenarios.

This overview concludes our introduction to application security. Let’s begin by exploring the Microsoft Identity Platform in depth.

Watch Video

Manage Key Vault safety and recovery features

Review the Microsoft identity platform

Secure Azure solution with Azure Active Directory

Hybrid Identity

Identity Protection

Azure AD Privileged Identity Management

Enterprise Governance

Perimeter Security

Network Security

Host Security

Container Security

Key Vault

App Security

Storage Security

Database Security

Azure Monitor

Microsoft Defender for Cloud

Microsoft Sentinel

Introduction

Watch Video

Introduction

Secure Azure solution with Azure Active Directory

Hybrid Identity

Identity Protection

Azure AD Privileged Identity Management

Enterprise Governance

Perimeter Security

Network Security

Host Security

Container Security

Key Vault

App Security

Storage Security

Database Security

Azure Monitor

Microsoft Defender for Cloud

Microsoft Sentinel

Documentation Index

Watch Video