Back To Schedule
Monday, August 17 • 15:05 - 16:25
Tutorial: Getting Started With Cloud Native Security - Liz Rice, Aqua Security & Michael Hausenblas, Amazon

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

This tutorial will get you off the ground with Kubernetes security basics, using live demos and examples to work through yourself.

We’ll start with possible attack vectors, to help you map out the threat model that applies to your cluster, so you can figure out where you need to focus your efforts for security.

We’ll show you how to compromise a deployment with a pod running with a known vulnerability. Once you’ve had the attacker’s eye-view, we’ll walk you through the most important techniques and open source tools to prevent compromise.

· Using secure Kubernetes settings
· Including vulnerability scanning in your workflow
· Configuring pods to run securely (eg avoiding unnecessary privileges)
· Using GitOps to restrict user access to your cluster and provide an audit trail

You’ll leave this tutorial armed with practical actions for securing your deployment.

avatar for Liz Rice

Liz Rice

Vice President, Open Source Engineering, Aqua Security
Liz Rice is VP Open Source Engineering at cloud native security specialists Aqua Security. She also chairs the CNCF's Technical Oversight Committee, and was Co-Chair of KubeCon + CloudNativeCon in 2018. She has a wealth of software engineering experience working on network protocols... Read More →
avatar for Michael Hausenblas

Michael Hausenblas

Developer Advocate, Amazon Web Services
Michael is a Developer Advocate at AWS, part of the container service team, focusing on container security. Michael shares his experience around cloud native infrastructure and apps through demos, blog posts, books, and public speaking engagements as well as contributes to open source... Read More →

Monday August 17, 2020 15:05 - 16:25
Feedback form isn't open yet.