Cloud Native Live: Intro to Tetragon – eBPF-based security observability & runtime enforcement
Cilium’s new Tetragon component enables powerful realtime, eBPF-based Security Observability and Runtime Enforcement.Tetragon detects and is able to react to security-significant events, such asProcess execution eventsSystem call activityI/O activity including network & file accessWhen used in…
Have we reached a point of no return on managing software dependencies?
Guest post originally published on Paolo Mainardi’s blog by Paolo Mainardi, Founder and CTO of Sparkfabrik Software Supply Chain security issues are hitting hard the whole OSS ecosystem; not a day goes by without a security incident going into…
Securing GRPC on Kubernetes with mTLS identities, using Linkerd and Go
Guest post originally published on Medium by Lachlan Smith Lachlan Smith from the ZeroFlucs Engineering team takes a dive into how we use strong identities, message authentication and encryption to ensure trusted, secure and contained communication…
CNCF On demand webinar: Velero – the open source Kubernetes backup and recovery tool
Velero – the open source Kubernetes backup and recovery tool. While it’s powerful and flexible, the initial setup can be daunting to a beginner. Persistent Volumes also require CSI configuration, which varies from provider to provider.
Ambassador post by Miley Fu, CNCF Ambassador, DevRel at CNCF WasmEdge project Introduction: The recent surge in popularity of large language models and their applications, driven by the success of ChatGPT, has sparked immense interest in…
Top Kubernetes security tools in 2023
Member post originally published on the ARMO blog by Ben Hirschberg Kubernetes security is a critical part of the app lifecycle, through the build, deployment and runtime stages. Kubernetes runtime environments are dynamic and continuously changing. As clusters are…
Saying goodbye to PaaS and IaaS
Community post originally published on Medium by Noah Ispas Kubernetes is taking over, isn’t it? Almost everyone has heard of Kubernetes by now, and many organizations of all sizes are using it or at least considering using…
Enforcing Efficient Network Security with Cilium Bloomberg offers a host of financial products to its clients, including BQuant Enterprise, which enables users to build, test, and share research internally within their financial institution as interactive applications,…
From IP to identity: making cattle out of pets in cloud native
Community post by Bill Mulligan From one bit modifying the next to frontend talking to backend, IT is fundamentally about identity, who is talking to what and what is the outcome of their interaction. This concept…
Using Kyverno with Pod Security Admission
Guest post originally published on the Kyverno blog by Kyverno Maintainers Using Pod Security Admission with Kyverno for the best of both worlds. Pod Security Admission (PSA) is the built-in successor to Kubernetes PodSecurityPolicy (PSP) and is enabled by…