OpenShift Commons Briefing #113: Security and Forensics Best Practices for OpenShift with Knox Anderson (Sysdig)
January 16, 2018 | by
OpenShift Commons Briefing Summary
In this briefing, Sysdig’s Knox Andersen walked us through security and forensic best practices for OpenShift and containers. We learned about how to simplify and strengthen an organization's security posture by combining deep kernel-level container visibility with metadata from an OpenShift deployment to define your security policies. SysDig’s Knox Anderson also covered how the security landscape is changing, the architecture of Sysdig Secure, and even covered a live security instrumentation of a containerized environment.
During the live demo, Knox walked through what Sysdig Secure functionality does to:
– Implement application and OpenShift-aware policies. – Block incoming attacks and container break-ins. – Audit executed commands. – OpenShift forensics: Pre and post-attack investigation. – Unify monitoring & security workflows.
Learn More at the Next OpenShift Commons Gathering in London on Jan 31, 2018!
Red Hatters, CNCF/Kubernetes project leads, community members with production deployments, and numerous other members of the OpenShift Commons will be gathering together in London for the upcoming OpenShift Commons Gathering at the QE II Centre.
Don't forget to leave your feedback and suggestions for each video on YouTube or in the comments section below. This will be incredibly important to shape this Special Interest Group and create sessions that fit the demands of all the OpenShift developers in the community.
About OpenShift Commons
OpenShift Commons is the place for organizations that are part of the OpenShift community to connect with peers and other related open source technology communities to communicate and collaborate across all OpenShift projects and stakeholders.
The Commons' goal is to foster collaboration and communication between OpenShift stakeholders to drive success for all members, and expand & facilitate points of connection between members for sharing knowledge and experience to help drive success for the platform and for participants: customers, users, partners, and contributors.
In part 2 of this three-part blog series, I covered a practical implementation of OpenShift Platform Plus tools and policies that help with achieving compliance with certain NIST SP 800-53 security ...
This post was written by Keith Tenzer, Dan Zilberman, Pieter Malan, Louis Santillan, Kyle Bader and Guillaume Moutier. Overview Running Apache Spark for large data analytics workloads has typically ...