Tech Talks

Nurturing Security Permaculture: Kubernetes SIG Security Update

Nurturing Security Permaculture: Kubernetes SIG Security Update

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Tabitha Sable Mahé Tardy Savitha Raghunathan Ala Dewberry

kubernetes security sig-security cloud-native community auditing threat-modeling documentation tooling self-assessment cve-feed cve-scanner

Canals and Bridges: Using Amsterdam’s Transit System To Secure K8s Networks

Canals and Bridges: Using Amsterdam’s Transit System To Secure K8s Networks

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

kubernetes k8s networking security network-policies ebpf threat-modeling observability firewall cni cilium inspector-gadget

Policy Matters! A Policy Working Group Introduction and Deep Dive

Policy Matters! A Policy Working Group Introduction and Deep Dive

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Jim Bugwadia Frank Jogeleit

kubernetes policy-working-group policy-api policy-reporter admission-control security governance compliance devsecops cncf observability

RBAC to the Future: Untangling Authorization in Kubernetes

RBAC to the Future: Untangling Authorization in Kubernetes

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

kubernetes rbac authorization security cloud-native access-control kubernetes-security least-privilege iam cve

A Confidential Story of Well-Kept Secrets

A Confidential Story of Well-Kept Secrets

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

kubernetes secrets-management security aws external-secrets-operator argo-cd opa-gatekeeper gitops cloud-native data-encryption access-control devops

Confidential Containers Made Easy

Confidential Containers Made Easy

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Fabiano Fidencio Jens Freimann

confidential-computing kubernetes containers trusted-execution-environments tee kata-containers coco cloud-native security data-protection attestation

Cert-Manager Can Do SPIFFE? Solving Multi-Cloud Workload Identity Using a De Facto Standard Tool

Cert-Manager Can Do SPIFFE? Solving Multi-Cloud Workload Identity Using a De Facto Standard Tool

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Thomas Meadows Joshua Van Leeuwen

cert-manager spiffe kubernetes workload-identity multi-cloud csi-driver x509 authentication security cloud-native identity-management

Welcome to the Security Village

Welcome to the Security Village

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

security kubecon cloud-native kubernetes cncf security-village capture-the-flag ctf unconference cloud-security

Adopting Network Policies in Highly Secure Environments

Adopting Network Policies in Highly Secure Environments

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Raymond de Jong

kubernetes network-policies cilium ebpf security observability hubble grafana zero-trust ingress egress layer7-security

From SBOMs to IBOMs - Know What's Happening in Your Clusters

From SBOMs to IBOMs - Know What's Happening in Your Clusters

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Cindy Blake Ido Neeman

sbom ibom cloud-native infrastructure-management security supply-chain-security asset-management kubernetes compliance cost-optimization attack-surface-management drift-detection

The Hacker's Guide to Kubernetes

The Hacker's Guide to Kubernetes

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Patrycja Wegrzynowicz

kubernetes security hacking owasp-kubernetes-top-10 rce network-segmentation secrets-management container-security vulnerability-management cloud-native sre

Keynote: Tales from the Cloud Native Community

Keynote: Tales from the Cloud Native Community

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023

Nikhita Raghunath Ricardo Rocha

cloud-native cncf community incubation graduation technical-advisory-groups observability security app-delivery