Operations | Monitoring | ITSM | DevOps | Cloud

Tigera

Kubernetes Security - Intrusion Detection and Mitigation

Sep 10, 2020 By Tigera In Tigera
By default, pods are not isolated. This means that malicious actors once inside may wander freely throughout your kubernetes cluster. During this session we’ll discuss the different attack vectors and how to mitigate. Intro to attacking kubernetes and applications Network policies, isolation and quarantining IDS and honeypots concepts
View Video
tigera

Achieving CI Velocity at Tigera using Semaphore

Sep 10, 2020 By Vaibhav Thakur In Tigera

Tigera serves the networking and policy enforcement needs of more than 150,000 Kubernetes clusters across the globe and supports two product lines: open source Calico, and Calico Enterprise. Our development team is constantly running smoke, system, unit, and functional verification tests, as well as all our E2Es for these products. Our CI pipelines form an extremely important aspect of the overall IT infrastructure and enable us to test our products and catch bugs before release.

Read Post

Self-Service Network Security for Kubernetes

Sep 8, 2020 By Tigera In Tigera
Learn how to empower your team with safe self-service network security for Kubernetes with Calico Enterprise. What are Calico Enterprise Network Policy Tiers How to use tiers to enable safe self service policy management What are Calico Enterprise Policy impact preview and staged network policies How to enable operations and developers to safely manage Kubernetes network policy How to build a workflow using these tools to safely deliver approved changes to your clusters
View Video
tigera

The New Model for Network Security: Zero Trust

Sep 3, 2020 By John Armstrong In Tigera

The old security model, which followed the “trust but verify” method, is broken. That model granted excessive implicit trust that attackers abused, putting the organization at risk from malicious internal actors and allowing unauthorized outsiders wide-reaching access once inside. The new model, Zero Trust networking, presents an approach where the default posture is to deny access.

Read Post
tigera

Mitigating the Risks of Instance Metadata in AWS EKS

Sep 1, 2020 By John Armstrong In Tigera

Compromising a pod in a Kubernetes cluster can have disastrous consequences on resources in an AWS Elastic Kubernetes Service (EKS) account if access to the Instance Metadata service is not explicitly blocked. The Instance Metadata service is an AWS API listening on a link-local IP address. Only accessible from EC2 instances, it enables the retrieval of metadata that is used to configure or manage an instance.

Read Post

Visibility and Troubleshooting Modern Applications with Calico Enterprise and OpenShift

Aug 27, 2020 By Tigera In Tigera
Red Hat OpenShift is a great platform for hosting microservices, enabling developers to get up and running quickly. However, taking the next step from development to production imposes additional networking, security, and compliance requirements that must be addressed before Kubernetes apps can be widely deployed. Traditional networking tools, which were designed for relatively static IP environments, don’t have the context necessary to identify Kubernetes traffic flows, making it nearly impossible to effectively diagnose, troubleshoot, and resolve application connectivity issues.
View Video
tigera

Security Policy Self-Service for Developers and DevOps Teams

Aug 26, 2020 By Bikram Gupta In Tigera

In today’s economy, digital assets (applications, data, and processes) determine business success. Cloud-native applications are designed to iterate rapidly, creating rapid time-to-value for businesses. Organizations that are able to rapidly build and deploy their applications have significant competitive advantage.

Read Post

How to Secure and Troubleshoot your Microservices Network on Amazon EKS

Aug 26, 2020 By Tigera In Tigera
Many development teams select Amazon EKS as the best platform to run their microservices. Adopting Amazon EKS is easy, but running applications in production requires additional capabilities to meet compliance requirements, detect potential security incidents, and troubleshoot networking problems that can often occur.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.