Container Segmentation Strategies and Patterns

Glen Kosaka Network Security

Segmentation, Container Segmentation, and Micro-segmentation At a recent container security conference the topic of ‘container segmentation patterns’ came up, and it became clear that many security architects are wrestling with how to best segment workload communication in the dynamic environment of containers. The question was also raised “Is the DMZ dead?” The concept of network segmentation has been around for …

How Kubernetes Networking Works – Under the Hood

Glen Kosaka Network Security

How to Understand and Set Up Kubernetes Networking, Including Multiple Networks   By Tobias Gurtzick Kubernetes networking is a complex topic, if not even the most complicated topic. This post will give you insight on how kubernetes actually creates networks and also how to setup a network for a kubernetes cluster yourself. This article doesn’t cover how to setup a …

The Ultimate Guide to Kubernetes Security

Fei Huang Container Security

How to Deploy Kubernetes Containers in Production, With Confidence By Fei Huang and Gary Duan Containers and tools like Kubernetes enable enterprises to automate many aspects of application deployment, providing tremendous business benefits. But these new deployments are just as vulnerable to attacks and exploits from hackers and insiders as traditional environments, making Kubernetes security a critical component for all …

kubernetes networking

How Kubernetes Networking Works – The Basics

Glen Kosaka Network Security

By Gary Duan Kubernetes 101 Before I get into Kubernetes networking, here are the basic concepts to know about in Kubernetes. For those not familiar with Kubernetes, these are the objects and terms used in a Kubernetes deployment. Kubernetes is a container orchestration and management tool for automating the deployment and monitoring of containers. Kubernetes is supported by all major …

DockerCon17 – My Container Security Perspective

NeuVector Docker Security

By Gary Duan, CTO, NeuVector Last week was my first time going to the DockerCon conference, which I’ve heard is now attracting a more serious enterprise deployment audience. It was an exciting experience hearing about several major announcements and participating in interesting sessions. NeuVector was a sponsor and had a booth at the conference. It was great to meet some …