Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Containers

Securing Google Cloud Platform with Sysdig

Oct 22, 2021 By Sysdig In Sysdig
Together with Google Cloud, Sysdig reduces your cloud security risk. So you can confidently run your workloads on Google Cloud. Get started in minutes with Sysdig SaaS, and simplify security, compliance, and monitoring. Accelerate your growth with NO backend data management. # CSPM Sysdig is your centralized safe place to enhance cloud security posture. # Threat detection Plug in Google Cloud Audit logs And get started quickly with our out-of-the-box Falco rules.
View Video
armo

New Kubernetes high severity vulnerability alert: CVE-2021-25742

Oct 22, 2021 By Shauli Rozen In ARMO

On Oct 21st, the Kubernetes Security Response Committee issued an alert that a new high severity vulnerability was discovered in Kubernetes with respect to the ingress-nginx - CVE-2021-25742. The issue was reported by Mitch Hulscher. Through this vulnerability, a user who can create or update ingress objects, can use the custom snippets feature to obtain all secrets in the cluster.

Read Post
tigera

Workload access control: Securely connecting containers and Kubernetes with the outside world

Oct 21, 2021 By John Armstrong In Tigera

Containers have changed how applications are developed and deployed, with Kubernetes ascending as the de facto means of orchestrating containers, speeding development, and increasing scalability. Modern application workloads with microservices and containers eventually need to communicate with other applications or services that reside on public or private clouds outside the Kubernetes cluster. However, securely controlling granular access between these environments continues to be a challenge.

Read Post
sysdig

ISO 27001:2013 compliance with Sysdig Secure

Oct 13, 2021 By Alba Ferri In Sysdig

The ISO 27001 certification can make a difference when your business is tied with deploying cloud-native applications. Providing relevance and credibility in front of potential customers will show that your company takes security seriously, ensuring the client’s trust. We previously covered other compliance frameworks in our blog, like GDPR, HIPAA, NIST, and SOC 2. Those frameworks also show a strong commitment to security best practices.

Read Post
tigera

Kubespray 2.17 released with Calico eBPF and WireGuard support

Oct 12, 2021 By Noah Crowley In Tigera

Congratulations to the Kubespray team on the release of 2.17! This release brings support for two of the newer features in Calico: support for the eBPF data plane, and also for WireGuard encryption. Let’s dive into configuring Kubespray to enable these new features.

Read Post
styra

The Power of Data: Calendar-based Policy Enforcement

Oct 7, 2021 By Anders Eknert In Styra

A problem that is often discussed in the context of policy-as-code is how to get more people other than developers involved in policy authoring. Policy as code is still code, and while tooling and abstractions can help to some extent, the process still involves at least some level of development knowledge.

Read Post
styra

Kong Mesh and Styra DAS - securing modern cloud-native applications

Oct 5, 2021 By Kurt Roekle In Styra

Back at KubeCon North America 2017, many speakers declared that 2018 would be “The Year of the Service Mesh”. Just a year later, in the 2019 CNCF Survey1, it was reported that 18% of surveyed organizations were using a service mesh in production, and by 20202 (the most recent survey published at the time of this writing) that number rose to 27%.

Read Post

Utilizing Upbound Crossplane and Styra DAS to Set Policy Across a Modern Technology Stack

Oct 5, 2021 By Styra In Styra
Upbound Crossplane with Styra Declarative Authorization Service (DAS) allows developers to elegantly provision infrastructure while preventing unsecure configuration. Crossplane applied to Kubernetes with Open Policy Agent (OPA) and Styra DAS can efficiently and effectively apply policy for centralized code and enforcement.
View Video

Applying Least Privilege in Kubernetes II Jonathan Canada

Oct 4, 2021 By Teleport In Teleport
Scalability and Cloud-Native have driven the demand for Kubernetes, but the developer now has the harder task of building applications in a secure manner. This talk will focus on best practices for implementing least privilege and enforcing zero trust principles within Kubernetes clusters. A how-to for implementing robust Role Based Access Control (RBAC) tied into the corporate SSO/Identity provider using Teleport.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.