Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

January 2019

tigera

Leveraging Service Accounts for Label-based Security

Jan 31, 2019 By Christopher Liljenstolpe In Tigera

One of the key Kubernetes security concepts is that workload identity is tied back to information that the orchestrator has. The orchestrator is actually the authoritative entity for what the actual workloads are in the platform. Kubernetes uses labels to select objects and to identify collections of objects that satisfy certain conditions. We, and others in the Kubernetes networking space, often talk about using Kubernetes ‘labels’ as identity bearers.

Read Post

Zero Trust Security: Supporting a CARTA approach with Network Security

Jan 28, 2019 By Tigera In Tigera
Learn how to support, what Gartner has termed, a continuous adaptive risk and trust assessment (CARTA) when building a CaaS platform using Kubernetes. Network security enables microsegmentation and is a core component of a zero trust security model. It allows you to protect your workloads against threats without relying on assumptions about the network, infrastructure, and workloads.
View Video
tigera

Adding CVE scanning to a CI/CD pipeline

Jan 14, 2019 By Luc Juggery In Tigera

A Docker image contains an application and all its dependencies. As it also contains the numerous binaries and libraries of an OS, it’s important to make sure no vulnerabilities exist in its root filesystem, or at least no critical or major ones. Scanning an image within a CI/CD pipeline can ensure this additional level of security.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.