Cloud native environments such as Kubernetes or AWS Lambda come with new challenges around security and in this talk we will review the environments and their properties, highlight common features and look at attack vectors and how to potentially reduce them.
Cloud native environments such as Kubernetes or AWS Lambda come with new challenges around security: short-lived entities (containers, functions), untrusted environments/public clouds, high velocity, etc.. In this talk we will review the environments and their properties, highlight common features and table stakes (e.g., mutual TLS), and look at attack vectors and how to potentially reduce them. Focus areas are: managing confidential data in untrusted environments, container (image) and runtime security, Kubernetes control plane, as well as Function-as-a-Service execution isolation and considerations.
Speakers: Michael Hausenblas