By Gary Duan This was my first time attending AWS re:Invent. NeuVector was also a sponsor and our team was here to meet with customers and discuss their use cases. Although Microsoft Azure and Google Cloud are rising rapidly, the vast user base of AWS and countless new features and improvements introduced every week make AWS the dominant force for …
Watch the meetup video for a comprehensive overview of Continuous Container Security. The meetup is hosted by Shannon Williams, co-founder of Rancher, with lots of Q&A, so it’s long (2 hrs!). Here’s the start times for the key sections of Securing Container Deployments: [08:11] Quick Security Tips from Rancher, Bill Maxwell Director of DevOps Rancher @cloudnautique [33:06] Continuous Container Network …
OpenShift Security for Network Visibility and Runtime Protection RedHat OpenShift and Kubernetes provide the tools to deploy and manage containers at scale. But how can OpenShift security be integrated into the workflow? In this briefing, NeuVector CTO Gary Duan introduces the docker container threat landscape and the Openshift security requirements for the Build, Ship, and Run phases. Runtime visibility and Kubernetes …
By Gary Duan Kubernetes 1.7 was recently released. The highlights of the release include much improved security features. Here’s a summary from the Kubernetes blog: At-a-glance, security enhancements in this release include encrypted secrets, network policy for pod-to-pod communication, node authorizer to limit kubelet access and client / server TLS certificate rotation. Security is often cited as one of the …
Also is the First to Implement Distributed Security Auditing for Kubernetes 1.6 Deployments [UPDATE]: NeuVector open source tool and product now supports Kubernetes 1.7 and the newly release 1.8 CIS benchmark By Gary Duan The Center for Internet Security (CIS) recently released the Kubernetes CIS Benchmark for Kubernetes 1.6 security auditing. Many companies planning deployments or already in production will …