Nurturing Security Permaculture: Kubernetes SIG Security Update

May 01, 2023 31 min Free
KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Tabitha Sable Mahé Tardy Savitha Raghunathan Ala Dewberry
kubernetes security sig-security cloud-native community auditing threat-modeling documentation tooling self-assessment cve-feed cve-scanner

Description

This talk provides an update from the Kubernetes SIG Security team, focusing on their community-building approach to improving Kubernetes security. Speakers share updates on documentation, third-party audits, self-assessments, and tooling subprojects. The presentation also outlines how contributors of all experience levels can get involved in enhancing Kubernetes security through collaboration and mutual support.

Up Next

A Look Under the Hood of CNCF Security Audits
31 min

A Look Under the Hood of CNCF Security Audits

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Adam Korczynski David Korczynski
cncf security-audits cloud-native open-source-security threat-modeling vulnerability-management cve salsa-compliance supply-chain-security argo cilium flux
Kubernetes Security Response Committee: Intro & Deep Dive
35 min

Kubernetes Security Response Committee: Intro & Deep Dive

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Monis Khan Micah Hausler
kubernetes security vulnerability-management cve bug-bounty cloud-native aws microsoft api-security supply-chain-security
Staring Into the Abyss with the Security Technical Advisory Group
25 min

Staring Into the Abyss with the Security Technical Advisory Group

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Michael Lieberman Marina Moore
cncf cloud-native security supply-chain-security threat-modeling security-assessments zero-trust kubernetes open-source-security security-controls architecture design-patterns
From Automation to Community: A Deep Dive Into SIG Contributor Experience
37 min

From Automation to Community: A Deep Dive Into SIG Contributor Experience

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Priyanka Saggu Madhav Jivrajani Kaslin Fields
kubernetes github-management automation community open-source mentoring ci-cd github-workflows developer-advocacy
How SIG Release Makes Kubernetes Releases Even More Stable and Secure
35 min

How SIG Release Makes Kubernetes Releases Even More Stable and Secure

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Veronica Lopez Marko Mudrinić
kubernetes sig-release release-management supply-chain-security salsa-compliance container-images registry-migration debian-packages rpm-packages ci-cd cloud-native
Interactive Playground to Learn Kubernetes and Cloud Native Security
37 min

Interactive Playground to Learn Kubernetes and Cloud Native Security

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Madhu Akula
kubernetes cloud-native-security kubernetes-security container-security vulnerability-assessment attack-vectors security-testing devops-security cyber-kill-chain threat-modeling container-escape
Back to Home