alcide

Alcide Blog

Cloud-native Security Provider

Whitelisting Processes on Kubernetes Pods Using AppArmor (Part 1)

Aug 12, 2020 7:01:37 AM / by Natan Yellin posted in devsecops, cloud security, network security, Kubernetes security

0 Comments

 

Read More

Mitigate Attack Vectors with Alcide Kubernetes Security Platform

May 27, 2020 8:07:50 AM / by Rachel Cheyfitz posted in cloud security, security services, kubernetes, devops, alcide advisor, network security, Kubernetes security, Advisor, Runtime, SaaS

0 Comments

Last month, the Microsoft Azure Security Center published a fully detailed Threat Matrix for Kubernetes. This article identifies attack vectors unique to a Kubernetes environment. This important contribution is derived from the more generalized MITRE ATT&CK® framework that offers a complex matrix of common attack vectors.

Read More

Kubernetes-as-a-Service: EKS vs. AKS vs. GKE

May 4, 2020 7:39:14 AM / by Alon Berger posted in EKS, AWS, hybrid cloud, devsecops, cloud security, security services, containers, devops, Kubernetes security, aks, GKE

8 Comments

 

Read More

Kubernetes Orphaned Resources

Nov 13, 2019 8:16:37 AM / by Guy Moyal posted in cloud security, kubernetes, devops, alcide advisor, Kubernetes security, Advisor

2 Comments

 

The Kubernetes container-orchestration system provides a platform for automating deployments
and operations of application containers across clusters of hosts by defining resources as
manageable Objects. Some of these resources can be managed by other resources automatically
while others can be referenced through metadata fields within the object.

Read More

IAM Role Pod Delegation Checks on AWS Kubernetes Clusters

Sep 16, 2019 9:27:49 AM / by Guest Writer: Twain Taylor posted in AWS, cloud security, kubernetes, microservices, devops, IAM Role

0 Comments

 
You can never be too safe when it comes to securing your applications. It’s essential that security is a part of the application framework and not just a protective outer layer. Enterprises are swiftly adopting the microservices architecture because of its numerous benefits. However, security still remains a concern. Kubernetes has emerged as the de-facto container orchestration tool. And, on its own, Kubernetes seems to be decent for managing secrets.
 
**Since we published this blog, AWS Fine-Grained IAM Roles for Service Accounts - read about it here. **

Read More

The New Cloud-Native Security Paradigm- Exciting times for me to join Alcide!

Aug 26, 2019 8:41:22 AM / by Amir Ofek posted in cloud security, kubernetes, microservices, devops

0 Comments

 
 
I am a big believer in Jeff Bezos’s Day 1 philosophy. So when the opportunity came for me to drive Day 1 yet again, I could not resist.

Read More

Secret-Hunting in Kubernetes

Aug 6, 2019 10:19:28 AM / by Guest Writer: Theo Despoudis posted in cloud security, kubernetes, microservices, devops, alcide advisor

1 Comment

 

Applications and workloads running on Kubernetes environment, just like any application, requires secrets to gain access to data stored in the database, 1st / 3rd party services or APIs.
Secrets, however, are only effective if they actually remain secret. When secrets leak, attackers will be able to gain access to sensitive data, services or APIs and can potentially put your entire environment and business at risk.

Read More

Kubernetes Vulnerability Scanning

Jul 3, 2019 5:24:24 AM / by Guest Writer: Twain Taylor posted in cloud security, kubernetes, microservices, devops

1 Comment

 
Read More

Don’t Let Kubernetes Become a Black Box: Optimizing the K8s Experience

Jun 4, 2019 8:14:06 AM / by Guest Writer: Theo Despoudis posted in cloud security, kubernetes, microservices, devops, alcide advisor

0 Comments

 

Everyone is talking about Kubernetes these days, and it’s no secret that Kubernetes has emerged as the leading container orchestration tool. There are a variety of reasons for that, ranging from Kubernetes’s open source, community-based development model to helpful technical features like pod security policies and automatic load balancing.

Read More

Top 5 Best Practices for Healthy Kubernetes 1.14 Environments

May 2, 2019 4:01:32 AM / by Guest Writer: Eric Bruno posted in cloud security, kubernetes, microservices, devops, alcide advisor

0 Comments

 

If you work with Kubernetes, you’re probably already familiar with basic Kubernetes best practices guides and patterns. But the recent release of Kubernetes v1.14 has introduced some new features, which in turn necessitate new best practices. Most of them center on security and automation, which are top of the list for operations staff, management, and development alike. But there are some others that factor in as well.

Read More

Subscribe to Email Updates