alcide

Alcide Blog

Cloud-native Security Provider

Kubernetes, OPA Gatekeeper, Alcide and Your Cluster Security

Jun 26, 2020 11:59:55 AM / by Gadi Naor posted in Admission Controller, OPA

0 Comments

Policies are a critical foundation to successfully build and operate Kubernetes based applications. Rather than making assumptions on how workloads and applications components should work, we can define policies that will govern and enforce the way those workloads and applications components must work.

Read More

Get Operational Security Insights and Alerts for Kubernetes using Alcide kAudit and Coralogix

Jun 18, 2020 9:59:26 AM / by Guest Writer: Amir Raz, Coralogix posted in devsecops, kubernetes, devops, Kubernetes security, foresnsics, kaudit, coralogix

0 Comments

 

Alcide Logs and Coralogix

Read More

Ingress This!!! API GA In 1.19

Jun 8, 2020 5:46:44 AM / by Gadi Naor posted in kubernetes, ingress, api

0 Comments


Ingress APIs manage external access to the services in a cluster, typically HTTP. This would generally be implemented as an API Gateway style of traffic routers that relay traffic to proxied services through a common entry point. The user would be left to control when and how to publish a service by using a declarative definition of the desired behavior (with YAML/JSON file).

Read More

New Kubernetes Man-In-The-Middle (MiTM) Attack Leverages IPv6 Router Advertisements

Jun 3, 2020 10:30:43 AM / by Natan Yellin posted in vulnerability, ipv6

0 Comments

 

The recent MiTM attack disclosed was a very unusual one in the Container Security world. All at the same time, Kubernetes, Docker, and Calico announced security bulletins related to IPv6 Rogue Router Advertisements. There are several security bulletins here because this isn’t a single vulnerability in one product - rather, multiple independent CNIs are all vulnerable. IPv6 Router Advertisements are a fairly obscure topic, yet this vulnerability is definitely worth understanding.

Read More

New Kubernetes Control Plane Vulnerability (CVE-2020-8555)

Jun 2, 2020 11:27:05 AM / by Nitzan Niv posted in alcide advisor, Kubernetes security, CVE, vulnerability, kaudit

0 Comments

 

Read More

K8s Breakfast Club: Checking in with Vipin Mohan (@AWS @containers)

May 31, 2020 7:22:09 AM / by Karine Regev posted in EKS, containers, fargate

2 Comments

Welcome to the K8s Breakfast Club, our vlog series featuring conversations with inspiring peers and friends from the cloud-native ecosystem. This week, Alcide CTO and co-founder Gadi Naor is giving containers-expert and segment lead at AWS, Vipin Mohan, a call to see what’s currently happening in his container world.

Read More

Mitigate Attack Vectors with Alcide Kubernetes Security Platform

May 27, 2020 8:07:50 AM / by Rachel Cheyfitz posted in cloud security, security services, kubernetes, devops, alcide advisor, network security, Kubernetes security, Advisor, Runtime, SaaS

0 Comments

Last month, the Microsoft Azure Security Center published a fully detailed Threat Matrix for Kubernetes. This article identifies attack vectors unique to a Kubernetes environment. This important contribution is derived from the more generalized MITRE ATT&CK® framework that offers a complex matrix of common attack vectors.

Read More

GitOps Progressive Security for ArgoCD with Alcide Kubernetes Advisor

May 21, 2020 6:29:28 AM / by Gadi Naor posted in kubernetes Advisor, GitOps, ArgoCD

0 Comments


GitOps is a paradigm that puts Git at the heart of building and operating cloud- native applications by using Git as the single source of truth. GitOps empowers developers to perform what used to fall under IT operations. GitOps, as a development pattern, gained a fair share of popularity in recent times as it emphasizes declaratively expressing infrastructure and application configuration within Git repositories GitOps.

Read More

K8s Breakfast Club // 5 things we learned about Matt Klein (@envoy @Lyft)

May 17, 2020 9:06:27 AM / by Karine Regev posted in Envoy, Matt Klein, CNCF, service mesh

0 Comments

Spoiler: we learned about the importance of open source, creating a fantastic community, tech-first vs software that’s not vendor-driven, and more.

Welcome to the Kubernetes Breakfast Club, our new vlog series featuring conversations with some of the most inspiring peers and friends from the cloud-native ecosystem. We ask our guests very important questions like what their favorite morning dish is or what keeps them busy outside their work these days. But we also ask their opinion on open source projects, application development practices, and everything in between.

Read More

Slack on the Wrist

May 11, 2020 9:29:28 AM / by Gadi Naor posted in Slack, kubernetes Advisor, sKan

0 Comments

 

 

Recent security risks associated with Zoom have become one of the big stories during the coronavirus pandemic. But it turns out not only does Zoom have some code to fix up.

Read More

Subscribe to Email Updates