Yesterday, Today ... Project Harbor - The Maintainers Track
33 min

Yesterday, Today ... Project Harbor - The Maintainers Track

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Vadim Bauer Yan Wang
project-harbor container-registry kubernetes artifact-management oci-101 replication vulnerability-scanning cloud-native operator terraform maintainability devops
Unlocking the Potential of KEDA: New Features and Best Practices
35 min

Unlocking the Potential of KEDA: New Features and Best Practices

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Jorge Turrado Ferrero Zbynek Roubalik
keda kubernetes autoscaling event-driven-architecture serverless hpa operator scaling-to-zero cloud-native devops ci-cd
Staring Into the Abyss with the Security Technical Advisory Group
25 min

Staring Into the Abyss with the Security Technical Advisory Group

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Michael Lieberman Marina Moore
cncf cloud-native security supply-chain-security threat-modeling security-assessments zero-trust kubernetes open-source-security security-controls architecture design-patterns
In-Toto: Attestations and More for Software Supply Chain Security
35 min

In-Toto: Attestations and More for Software Supply Chain Security

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Aditya Sirish A Yelgundhalli
software-supply-chain-security in-toto attestation sbom slsa kubernetes ci-cd container-security policy-enforcement digital-signatures provenance
Deliver Applications Efficiently with Cloud-Native Platforms
36 min

Deliver Applications Efficiently with Cloud-Native Platforms

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Thomas Schuetz Josh Gavant Jennifer Strejevitch
cloud-native kubernetes developer-platforms platform-engineering application-definition gitops operators observability identity-management data-stores ci-cd
TAG Contributor Strategy: What We Get Out of It (and You Could Too!)
36 min

TAG Contributor Strategy: What We Get Out of It (and You Could Too!)

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Catherine Paganini Dawn Foster Nate Waddington Dave Sudia Josh Berkus
cncf open-source-projects contributor-growth project-governance mentoring community-building developer-advocacy linux-foundation maintainer-resources kubernetes cloud-native vmware ambassador-labs red-hat
The State of Green Software + Cloud Native
37 min

The State of Green Software + Cloud Native

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Leonard Vincent Simon Pahlke Cara Delia
cloud-native cncf kubernetes observability data-centers api cloud-providers open-source
InSPIREing Progress: How We're Growing SPIFFE and SPIRE in 2023 and Beyond
55 min

InSPIREing Progress: How We're Growing SPIFFE and SPIRE in 2023 and Beyond

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Daniel Feldman Andrés Vega
spiffe spire workload-identity zero-trust cncf kubernetes security cloud-native authentication tpm istio
Life of a CVE with Ingress-Nginx; Understanding the Project's Release Cycle
32 min

Life of a CVE with Ingress-Nginx; Understanding the Project's Release Cycle

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
James Strong Dylen Turnbull
cve ingress-nginx release-cycle kubernetes nginx security vulnerability-management software-supply-chain open-source cloud-native
Guardians of the Runtime: Leveraging Behavioral Analysis and Policies
33 min

Guardians of the Runtime: Leveraging Behavioral Analysis and Policies

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Ben Hirschberg
kubernetes security runtime-security behavioral-analysis policy-management ci-cd ebpf linux-kernel system-calls network-policies vulnerability-management container-security
Interactive Playground to Learn Kubernetes and Cloud Native Security
37 min

Interactive Playground to Learn Kubernetes and Cloud Native Security

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Madhu Akula
kubernetes cloud-native-security kubernetes-security container-security vulnerability-assessment attack-vectors security-testing devops-security cyber-kill-chain threat-modeling container-escape
Image Signing and Runtime Verification at Scale: Datadog's Journey
34 min

Image Signing and Runtime Verification at Scale: Datadog's Journey

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Ethan Lowman
container-security image-signing runtime-verification kubernetes datadog supply-chain-security oci containerd grpc public-key-cryptography sigstore ci-cd