Hybrid cloud blog

September 15, 2021

Managing NIST 800-53 Controls in a Multicluster OpenShift Environment - Part 2

In part 1 of this three-part blog series, I covered the main ideas and tools in OpenShift Plus that support compliance in multicluster OpenShift deployments. I went through security challenges in ...

Michael Kotelnikov

September 14, 2021

Most Common Kubernetes Security Issues and Concerns to Address

Security concerns remain the number one challenge for adopting and running containerized applications in Kubernetes. Red Hat’s State of Kubernetes Security Report, which analyzed survey data from ...

Ajmal Kohgadai

September 13, 2021

Managing NIST 800-53 Controls in a Multicluster OpenShift Environment - Part 1

In this three-part blog series, I discuss the challenges that organizations face when managing multicluster OpenShift deployments and examine how they affect security and compliance in large ...

Michael Kotelnikov

September 9, 2021

Private Matters - ROSA and AWS PrivateLink Working Together

AWS PrivateLink provides private connectivity between VPCs, AWS services, and your on-premises networks, without exposing your traffic to the public internet. AWS PrivateLink makes it easy to connect ...

Mayur Shetty and Paul Czarkowski

September 1, 2021

From the Enterprisers Project: 5 DevSecOps Open Source Projects to Know

The always wonderful Enterprisers Project has a new round up of important DevSecOps Projects you should probably know about. Hats off to Gordon Haff for writing this up. From the article: 1. Clair ...

Alex Handy

September 1, 2021

The Advanced Cluster Security Operator Is Here. What You Need to Know and How to Get Started.

The Red Hat Advanced Cluster Security (RHACS) operator is now available, giving users flexible installation and lifecycle management of RHACS in their OpenShift clusters. Since the StackRox ...

Michael Foster

August 27, 2021

Ask an OpenShift Admin Office Hour - Compliance and security

Security and compliance are two hot topics when it comes to container-based applications. In this episode, we take a look at why that is and what it means to you as well as how Red Hat OpenShift can ...

Andrew Sullivan

August 26, 2021

2021 Kubernetes Threat Matrix Updates: Things You Should Know

In 2013 The MITRE Corporation created the first MITRE ATT&CK model, primarily focusing on the Windows enterprise environment based on contributions from the cybersecurity community. MITRE refined ...

Michael Foster

August 23, 2021

RBAC Model Around Cluster Sets in Red Hat Advanced Cluster Management for Kubernetes

In this blog, I introduce the RBAC model around a cluster set in Red Hat Advanced Cluster Management for Kubernetes (RHACM) that is available in version 2.3. Red Hat Advanced Cluster Management for ...

Dangpeng Liu

August 18, 2021

Top Open Source Kubernetes Security Tools of 2021

According to our recent survey of IT decision-makers, security is the biggest area of concern relating to container adoption, with security issues causing application deployment delays among 54% of ...

Ajmal Kohgadai

August 12, 2021

Applying an Extensible Policy Framework for Multicluster Governance

As customers transition from traditional IT infrastructure to cloud based environments, one of the key challenges they need to address is meeting the requirements of enterprise internal standards, ...

Jaya Ramanathan and Yu Cao

August 12, 2021

OpenShift and the NSA-CISA ‘Kubernetes Hardening Guidance’

Red Hat applauds the recent release of Kubernetes hardening guidance from the US National Security Agency (NSA) and the US Cybersecurity and Infrastructure Agency (CISA) to improve the nation’s ...

Michael Epley