Dates
Conferences
Tags
Sort by:
Most recent
Conference: Cloud Native SecurityCon North America 2022
Authors: Loris Degioanni
2022-10-25
tldr - powered by Generative AI
The presentation discusses the importance of securing code repositories and how to detect and prevent threats using CNCF's Falco.
- Code repositories are a prime target for attacks and are subject to several categories of threats such as pushing secrets, running GitHub actions with miners, and mistakenly publishing a private repository.
- Falco is a runtime security tool that traditionally protects containers and pods in Kubernetes but now has a GitHub plugin to provide real-time runtime security for GitHub repositories.
- Falco listens on containerized Kubernetes-based endpoints and captures signals such as system calls to detect bad stuff and give alerts.
- Falco's rule engine is simple and customizable, allowing users to add their own rules to detect specific threats.
- Falco is free, open-source, and can be helpful in securing code repositories.
- The presenter invites attendees to a Falco party and a session with Falco developers to learn more about the tool.
Conference: Cloud Native SecurityCon North America 2022
Authors: Pratik Lotia, Jon Zeolla
2022-10-25
Organizations are in need for a standard, sane way to perform an assessment of their cloud native environments. This talk provides insight on how security professionals as well as auditors can identify whether they are following the controls and practices suggested in CNCF published white papers and thereby adhering to NIST 800-53v5 controls.. We will also provide examples on how we plan to develop open source automation (such as OSCAL) to reduce the toil of audits; and cross mapping to various frameworks and standards to enable builders focus on making their environments safer.
Conference: Cloud Native SecurityCon North America 2022
Authors: Yuji Watanabe, Jayashree Ramanathan
2022-10-25
tldr - powered by Generative AI
The presentation discusses the importance of policy-based governance in protecting the integrity of Ansible playbooks and ensuring a consistent approach to managing clusters. The approach involves representing best practices as policies, managing them like source code, and deploying them using GitHub's methodology. The benefits include reduced operational costs, continuous security and audit readiness, and efficient day-to-day collaboration among various personas. The presentation also highlights the Kubernetes Policy Workgroup's white paper on policy management and the Open Cluster Management CNCF Sandbox project that enables the policy-based governance approach.
- Policy-based governance is crucial in protecting the integrity of Ansible playbooks and ensuring a consistent approach to managing clusters
- Best practices can be represented as policies, managed like source code, and deployed using GitHub's methodology
- Benefits include reduced operational costs, continuous security and audit readiness, and efficient day-to-day collaboration among various personas
- The Kubernetes Policy Workgroup's white paper on policy management and the Open Cluster Management CNCF Sandbox project enable the policy-based governance approach