►
From YouTube: Defend Section Group Conversation (Public Livestream)
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
Okay,
welcome
everyone
to
the
defend
group
conversation.
Just
as
a
heads
up.
My
name
is
David
I'm,
the
director
of
product
for
secure
and
defend.
We
see
a
lot
of
you
are
on
the
livestream
and
in
the
slides
as
of
right.
Now
there
still
aren't
any
questions
in
the
document,
so
we'll
give
it
a
minute
for
you
all
to
get
it
he'll,
add
a
couple
questions
and
we'll
begin
answering
them.
B
A
Are
several
customers
who've
tried
it
out,
including
internally,
because
the
IT
ops
has
been
using
it
as
well
as
of
right
now,
due
to
its
minimal
maturity.
Several
customers
have
also
turned
it
off,
because
it's
been
causing
too
much
noise
for
them
as
opposed
to
solving
a
problem.
We're
currently
looking
to
address
the
couple
of
open
issues
and
I
believe
in
Wayne
can
correct
me,
but
I
believe
several
of
the
items
that
we
committed
a
fixture
in
this
upcoming
release,
as
well
as
several
additional
items
planned
for
the
release.
After
that
yeah.
C
A
C
D
D
The
birth
control
community
contributions
in
the
fund,
but
we
don't
count
the
contributions
if
that
is
living
outside
of
or
products
up
in
the
community
directly
I
wanted
this
thought,
for
example,
this
Murph.
This
pull
request
story
that
was
made
by
one
of
our
talented
engineer
and
defend
in
the
upstream
projects.
D
A
B
A
So
exactly
yeah,
so
I
think
it's
a
it's
not
a
question.
So
I
said
yes,
I
think
would
be
great
for
secure
and
defend.
I.
Think
Philippe
is
asking:
is
anybody
else
thought
about
that
and
and
kind
of
turning
them
back
around
on
everybody
else?
Who's
attending?
To
answer
the
question
versus
the
defense
team
answering
the
question.
B
A
Wayne
and
Filipe
kind
of
elaborate
on
this
said
I
think
what
why
we
were
doing
it
is
to
make
it
a
more
usable
solution
for
get
lab,
and
so,
by
extension,
that
would
be
making
are
offering
more
mature,
because
it's
we're
now
adding
the
things
either
it's
missing
or
improving
upon
something
that
we
think
needs
to
be
improved
upon
to
make
it
a
holistic
solution
for
our
users.
Exactly
okay,
I
can
see
that
yeah
I,
don't
think
we'd
want
to
count.
A
B
D
Maybe
a
different
metric:
it's
not
a
product
maturity,
but
it's
maybe
an
engineering
maturity
because
it
demonstrates
our
ability
to
contribute
to
the
absent
project.
That's
what
I
using
this
is
not
always
on
the
case,
especially
in
secure
and
if
and
when
we're
we
are
using
a
lot
of
open
source
software,
that
is,
that
they're
better
on
the
shelf.
So
that's
that's
still
a
good
metric
to
me
for
our
going
to
contribute
back
to
the
projects.
That
means
we
understand
them
and
we're
able
to
contribute.
E
From
an
engineering
perspective,
kind
of
my
view
is,
is
you
know
we
should?
Obviously
we
should
obviously
contribute
to
communities
that
we
feel
are
valuable,
but
if
we're
gonna
contribute
a
significant
amount
of
time,
that
needs
to
be
well
thought
out
from
that.
Certainly
we
can
measure
it
one
of
the
things
right
now
is
it's
hard
for
me
to
make
an
evaluation
of
you
know
that
sort
of
somebody's,
saying:
okay,
we're
dedicating
two
people
to
this
activity,
because
then
it
becomes
more
statistically
interesting
as
an
example.
E
But
then
you
got
to
consciously
say:
okay,
here's
here's!
What
we
need
to
make
the
investment
in
this
particular
community
to
kind
of
move
that
forward,
so
we
should
definitely
encourage
it
where
it
makes
sense.
You
know
if
it's
becoming
larger,
then
we
should
have
the
discussion
around.
Is
this
the
right?
You
know
investment
and
then
the
other
part.
We
can
start
to
certainly
start
measuring
it.
If
we
find
value
and
then.
B
B
C
B
E
Be
okay,
it's
gonna
be
very
hard
and
then,
on
top
of
it,
you
got
to
think
in
terms
of
you
know.
If
that
community
doesn't
like
their
drive
their
behavior,
they
want
certain
criteria,
there's
a
whole
bunch
of
other
factors
that
can
you
can
measure
against
that
could
potentially
change
how
we
view
it.
B
D
Very
simple
way
to
track
that
is
together,
page
somewhere,
where
we
list
all
the
contributions
that
we
are
doing,
that
in
the
community
and
every
time
we
update
this
page.
We
add
something
we
just
use
a
label
like
we
do
for
the
community
contributions
and
there
are
yo.
You
hear
a
culture
of
a
metric
I.
E
Think
that
might
be
the
way
they
do
it.
The
other
way
is
also
for
that
team
is
to
take.
If
you
have
like
again
a
certain
percentage
or
a
number
of
Engineers,
we
take
them
out
of
the
equation.
We've
done.
A
similar
thing
for
on
call
and
records
to
to
ineffectively
to
engineers
are
on
call
for
a
given
month
and
we
removed
that
from
the
calculation.
Essentially,
so
there
ways
we
can
address
that
as
well
from
both
sides.
Mr
count
em
our
rate
I,
should
say
and
also
demonstrating
those
individuals
contributions.
B
Come
on
Philippe
I
think
that
page
is
an
excellent
idea.
I
think
we
want
to
show
that
a
skill
lab
that
we
we
don't
suffer
from
the
other
invented
here
syndrome
and
that
we
and
we
we
charge
for
money.
We
use
it
to
make
it
live
open-source
better,
but
we
also
use
it
to
make
our
open-source
cortex
better.
A
F
A
So
I
did
start
typing
the
answer:
I've
missed
out
on
the
contributors
part,
but
for
everybody,
the
total
Tam
and
is
according
to
Gartner,
is
around
2.7
billion
for
laughs.
Now
that
number
includes
things
that
we
we
don't
plan
on
addressing
it
includes
things
like
physical
laughs,
which
I
assume
is
probably
big
chunk
of
that.
So
you
think
of
things
like
an
F
I
did
I
could
do
like
a
terabyte
per
second
of
web
traffic
inspection
sitting
out
on
the
perimeter
of
a
data
center.
A
If
you
look
at
just
the
cloud,
security
focused
part
of
that
number,
it's
about
five
to
ten
percent
of
that
number,
so
it's
a
little
bit
closer
to
the
ten
that
we
would
actually
be
going
towards
or
the
Sam.
In
that
case,
the
other
item
I
would
add
that
I
can't
type
of
F
words
are
the
competitors
so
there's
obviously
f5
and
Citrix
is
of
the
world
that
are
building
these
large
appliances.
A
F5
does
have
a
cloud
security
focused
one
something
you
to
play
with
in
AWS.
They
also
you
can
look
at
things
like
Imperva
is
also
started
doing
that
as
well.
Barracuda
Networks,
it's
so
a
small
sliver
of
their
annual
revenue,
but
it's
is
focused
on
being
in
an
AWS
or
GCP.
The
other
one
is
that
we
actually
could
be
competing
with
our
cloud
providers.
So
Google
and
Amazon
have
created
WAAFs
for
inside
of
their
environments.
I'd
not
really
seen
Microsoft
Bob
above
one
yet
but
I'm
sure,
as
they're
continuing
to
grow.
B
B
Hey
David,
something
I
want
to
check
with
you.
My
impression
is
a
bit
that
in
container
clusters
it
like
all
the
security
technology
kinda
has
to
be
reinvented,
and
the
consequence
of
that
is
that
because
agents
are
possible
and
because
they're
not
working
works,
different
a
lot
of
these
technologies
that
we
already
know
are
beneficial
to
security,
aren't
applied
so
there's
a
low
usage
of
any
security
solution
and
that's
kind
of
part
of
what
we're
trying
to
fix.
B
We
want
to
make
sure
that,
in
the
future,
with
other
DevOps,
all
this
stuff,
just
is
on
by
default.
You'd
have
to
think
about
it.
Do
you
agree
that,
like
there's
low
usage
of
secure
like
these
defend
technologies
in
in
cloud
native
technology
in
container
clusters,
like
those
things
you
mentioned,
of
the
cloud
providers,
I
do
I.
A
G
No
I
just
put
in
the
unguided
link
to
the
e-book
as
opposed
that's
not
for
customers
for
customers.
We
have
a
gated
link
and,
but
that
undated
link.
It
might
be
interesting
for
for
folks
to
see
kind
of
what
traditional
security
hasn't
really
covered.
When
we
think
about
secure
and
cloud
native
applications.