OpenShift Commons Briefing #113: Security and Forensics Best Practices for OpenShift with Knox Anderson (Sysdig)
January 16, 2018 | by
OpenShift Commons Briefing Summary
In this briefing, Sysdig’s Knox Andersen walked us through security and forensic best practices for OpenShift and containers. We learned about how to simplify and strengthen an organization's security posture by combining deep kernel-level container visibility with metadata from an OpenShift deployment to define your security policies. SysDig’s Knox Anderson also covered how the security landscape is changing, the architecture of Sysdig Secure, and even covered a live security instrumentation of a containerized environment.
During the live demo, Knox walked through what Sysdig Secure functionality does to:
– Implement application and OpenShift-aware policies. – Block incoming attacks and container break-ins. – Audit executed commands. – OpenShift forensics: Pre and post-attack investigation. – Unify monitoring & security workflows.
Learn More at the Next OpenShift Commons Gathering in London on Jan 31, 2018!
Red Hatters, CNCF/Kubernetes project leads, community members with production deployments, and numerous other members of the OpenShift Commons will be gathering together in London for the upcoming OpenShift Commons Gathering at the QE II Centre.
Don't forget to leave your feedback and suggestions for each video on YouTube or in the comments section below. This will be incredibly important to shape this Special Interest Group and create sessions that fit the demands of all the OpenShift developers in the community.
About OpenShift Commons
OpenShift Commons is the place for organizations that are part of the OpenShift community to connect with peers and other related open source technology communities to communicate and collaborate across all OpenShift projects and stakeholders.
The Commons' goal is to foster collaboration and communication between OpenShift stakeholders to drive success for all members, and expand & facilitate points of connection between members for sharing knowledge and experience to help drive success for the platform and for participants: customers, users, partners, and contributors.
The Apple M1 processor has received a lot of attention in the press since its release. Based on a system on chip (SoC) design, the M1 integrates several different components, including the Arm core ...
Do you want to automatically subscribe your Red Hat Enterprise Linux (RHEL) VMs on OpenShift Virtualization to receive the latest updates? In this article you can learn how to do that with OpenShift ...