Kubernetes turns 10: triumphs, trials, and the ongoing battle for security
Member post by Nigel Douglas, Senior Developer Advocate at Sysdig Kubernetes will celebrate its 10th anniversary at the “KuberTENes Birthday Bash” this week. This milestone is a perfect time to commemorate the platform’s decade-long journey and the significant…
The premier conference for cloud native security reunites the leading minds to share solutions to the most pressing challenges through innovative technologies SAN FRANCISCO, Calif. – May 8, 2024– The Cloud Native Computing Foundation® (CNCF®), which builds sustainable…
InfoQ: “Falco, Cloud-Native Security Tool for Kubernetes, Graduates from CNCF”
CNCF announced the graduation of Falco, a tool designed for Linux systems and a de facto Kubernetes threat-detection engine. The project successfully met all graduation requirements, including undergoing the due diligence process, completing a third-party security audit, and obtaining…
OSTIF’s 2023 Cloud Native Computing Foundation audit impact report is live!
Community post by Amir Montazery, OSTIF We at OSTIF are excited to announce the 2023 Cloud Native Computing Foundation Audit Impact Report. This is the second year of the program between the two organizations, which combines funding and…
Why Cloud Auditing Data Federation is important for an enterprise
Member post originally published on Coredge’s blog by the Coredge team Overview: The Cloud Auditing Data Federation (CADF) facilitates the federation of normative audit event data to and from cloud providers, which is why it is significant. It…
Kubernetes 1.29: the security perspective
Member post originally published on ARMO’s blog by Ben Hirschberg, CTO & Co-founder at ARMO Kubernetes 1.29 will be the last release from the Kubernetes team for 2023. The new release has 49 enhancements, with a multitude of beta and…
Community post originally published on Medium by Mathieu Benoit In Kubernetes 1.25 as stable (and since 1.23 as beta), the Pod Security admission (PSA) controller replaces PodSecurityPolicy (PSP), making it easier to enforce predefined Pod Security Standards (PSS) by simply adding a label to…
Kubernetes security: best practices for Kubernetes secrets management
Guest post originally published on the CyberArk blog by John Walsh Kubernetes has come a long way since its inception. But as the adoption of containerization has grown, Kubernetes security continues to be top of mind. Red Hat’s “The State of…
Automated security in GitOps pipelines with Weave Policy Engine
Member post originally published on the Weaveworks blog by Twain Taylor Discover the power of Weave Policy Engine for automated security in GitOps pipelines. Strengthen your Kubernetes applications’ security and compliance with policy-as-code enforcement. Learn more. Enterprises stepping…
Supply chain security framework: S2C2F
Guest post originally published on the SIGHUP blog by Simone Ragonesi In this article, we will introduce you to S2C2F. The Secure Supply Chain Consumption Framework is a combination of requirements and tools for any organization to adopt…