Search results for: open policy containers

K8s Benchmark Report: are organizations meeting NSA hardening checks?

Posted on April 9, 2024 | By Joe Pelletier

Member post originally published on Fairwinds’s blog by Joe Pelletier The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) continue to update their Kubernetes hardening guidance, making recommendations to help organizations ensure they are hardening their Kubernetes clusters. This…

KubeCon + CloudNativeCon Europe 2024 day 3: The power of sustainable computing 

Posted on March 21, 2024

It’s a time of more: more data, more workloads, and more powerful technologies. So it’s critical to ask ourselves how cloud native can help improve our environmental footprint. Here’s what we heard at today’s keynotes. Keynotes: Revolutionize cloud…

Workshop recap: Linkerd certificate management with Vault

Posted on March 5, 2024

Project post originally published on the Linkerd blog by Flynn This blog post is based on a workshop that I delivered way back in September 2023(!) at Buoyant’s Service Mesh Academy. If this seems interesting, check out the full recording!…

Maturing Istio Ambient: compatibility across various Kubernetes providers and CNIs

Posted on February 20, 2024

Project post originally published on Istio’s blog by Ben Leggett, Yuval Kohavi, and Lin Sun An innovative traffic redirection mechanism between workload pods and ztunnel. The Istio project announced ambient mesh – its new sidecar-less dataplane mode in 2022, and released…

Securing services meshes easier with Kyverno

Posted on February 16, 2024

Project post originally published on Kyverno’s blog Service meshes are all too common these days in Kubernetes with some platforms even building them into clusters by default. Service meshes are no doubt useful in a variety of ways…

What is a developer self-service platform and why does it matter?

Posted on February 2, 2024

Member post originally published on’s blog Speed is critical in the tech world. Organizations want to ship code quickly to gain a competitive edge. However, developers often need more time for essential infrastructure, environments, and access from…

Rethinking threat detection and response in cloud native ecosystems

Posted on February 1, 2024

Community post originally published on DZone by Nigel Douglas In highly dynamic cloud-native environments, the traditional Threat Detection and Response (TDR) approaches are increasingly showing their limitations. With its unique architecture and operational dynamics, Kubernetes demands re-evaluating how we handle security threats,…

Container platforms: why and how?

Posted on January 10, 2024 | By Lars Larsson

Member post originally published on Elastisys’s blog by Lars Larsson This article is all about demystifying container platforms and showing what value they bring on several levels: business, organization, and tech. There is a summary at the end,…

Top four Kubernetes attack chains and how to break them 

Posted on January 4, 2024 | By Oshrat Nir

Member post originally published on ARMO’s blog by Oshrat Nir, Developer Advocate at ARMO While Kubernetes adoption continues to soar, it has become a prime target for cyberattacks. Unfortunately, Kubernetes clusters are complex and can be difficult to secure….

Kubernetes rightsizing: save money and improve performance

Posted on December 28, 2023 | By Andy Suderman

Member post originally published on Fairwinds’s blog by Andy Suderman Kubernetes rightsizing is the process you use to ensure that your Kubernetes cluster has the right amount of resources to run your workloads efficiently. K8s rightsizing includes CPU,…