🚀 Build your Minimum Viable Platform (MVP) with our playbook. Start now
close icon
All events
DevSecOps on Kubernetes
Webinars
Webinars
Webinars

DevSecOps on Kubernetes

September 16, 2021
7:00 pm
CET
12:00 PM
EDT
45 min
Bi-weekly

With the shift to Kubernetes and Cloud Native technologies, a number of pressing security issues arise. In this DevSecOps talk, Thomas Fricke will share insights about the security model of Kubernetes, its pros, its vulnerabilities and how to get your cluster bulletproof.

Register now
Apply now
Watch webinar
Apply now
Speaker

Thomas Fricke

Date
September 16, 2021
45 min
7:00 pm
CET
PDT
12:00 PM
EDT
Bi-weekly

Kubernetes provides a lot of security features, but securing your setup can be complex and vulnerabilities are often not discovered. 

Starting from the Linux namespaces used in containers, all the way to the network, there are a lot of configurations to support (or totally destroy) the security of a cluster.

In this talk, Thomas will cover:

  • The security model of Kubernetes
  • How to check clusters for vulnerabilities and fight security weaknesses with a few lines of scripting
  • How to use scripts to analyze Istio, the "trust nothing" distributed firewall solution, and find an exploitable vulnerability in no time.
  • Finally, we show how Istio has handled the bug report and how future versions from 1.2 will close the exploit using the Container Network Interface (CNI).

After a 30 minutes talk, there will be 15 minutes for Q&A. We’d like to encourage you to submit your questions in advance.

A recording of the webinar and related materials will be shared with webinar attendees afterwards.

Audience - who should join?

DevOps Engineers, Site Reliability Engineers, System Engineers, Infrastructure Kubernetes Administrators, Technical Architects, Application Developers with an affinity with DevOps and Technical Management.

Register now
Apply now
Watch webinar
Apply now
Thomas Fricke
Cloud Security Architect
LinkedIn

Thomas Fricke has started Endocode, an Open Source and Cloud company and worked for several years as the CTO.

He is now working as a freelancer mainly as a Security Architect implementing Kubernetes based SecDevOps in Energy and Healthcare. He has a long history in building clouds, is working with Kubernetes nearly from the beginning, and started with Linux 0.95.

Thomas is pro bono member of the Gaia X project, AG Kritis, and member of the German IT Planungsrat (IT steering committee). He also started an initiative to create a legally and technically safe Government repo “Ein Ort für öffentlichen Code” (a place for public code).

Fork our pre-packaged platform architectures as code and start building
Select your cloud provider
Join our Newsletter
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
WHY
Why Platform EngineeringWhy Internal Developer PlatformWhy Humanitec
PRODUCT
Product overviewPlatform OrchestratorScorePortalIntegrationsPricing
Features
Environment managementDeployment managementInfrastructure orchestrationDeveloper self-serviceRBAC & governance
Use Cases
Use cases overview
Kubernetes migration
Kubernetes complexity
Eliminate ticket Ops
End-to-end self service
Build developer portals
Build an IDP
Company
About Humanitec
Careers
Hiring
CustomersProfessional ServicesPartnersContact
Resources
DocsBlogWhitepapersFAQStart free trial
Community
SlackEvents
Reference ARCHITECTURES
AWS
Azure
GCP
Red Hat OpenShift
©2024 Humanitec. All Rights Reserved.
ImprintSupportSecurityStatusPoliciesTechnical DefinitionsWhistleblowing