OpenShift Commons Briefing #113: Security and Forensics Best Practices for OpenShift with Knox Anderson (Sysdig)
January 16, 2018 | by
OpenShift Commons Briefing Summary
In this briefing, Sysdig’s Knox Andersen walked us through security and forensic best practices for OpenShift and containers. We learned about how to simplify and strengthen an organization's security posture by combining deep kernel-level container visibility with metadata from an OpenShift deployment to define your security policies. SysDig’s Knox Anderson also covered how the security landscape is changing, the architecture of Sysdig Secure, and even covered a live security instrumentation of a containerized environment.
During the live demo, Knox walked through what Sysdig Secure functionality does to:
– Implement application and OpenShift-aware policies. – Block incoming attacks and container break-ins. – Audit executed commands. – OpenShift forensics: Pre and post-attack investigation. – Unify monitoring & security workflows.
Learn More at the Next OpenShift Commons Gathering in London on Jan 31, 2018!
Red Hatters, CNCF/Kubernetes project leads, community members with production deployments, and numerous other members of the OpenShift Commons will be gathering together in London for the upcoming OpenShift Commons Gathering at the QE II Centre.
Don't forget to leave your feedback and suggestions for each video on YouTube or in the comments section below. This will be incredibly important to shape this Special Interest Group and create sessions that fit the demands of all the OpenShift developers in the community.
About OpenShift Commons
OpenShift Commons is the place for organizations that are part of the OpenShift community to connect with peers and other related open source technology communities to communicate and collaborate across all OpenShift projects and stakeholders.
The Commons' goal is to foster collaboration and communication between OpenShift stakeholders to drive success for all members, and expand & facilitate points of connection between members for sharing knowledge and experience to help drive success for the platform and for participants: customers, users, partners, and contributors.
Our streaming video team has been hard at work creating new videos, answering your questions and live streaming demonstrations of all manner of OpenShift technologies. If you haven't stopped by the ...
In this blog post I want to introduce a nice little trick to make canary deployments possible only with Kubernetes StatefulSets and Services. First, let me give a bit of background on why I went down ...