Kubernetes namespaces - they’re an essential feature for building modern cloud architectures. Namespaces let you split up a single cluster into multiple “virtual clusters”. Resources like pods, replicasets, and deployments all live in namespaces. You can think of a namespace as being a resource’s last name - it specifies which family the resource is part of - and normal resources can have one and only one namespace (There are exceptions like the Node resource which is cluster-wide and doesn’t belong to any namespace). If you don’t think you’re using namespaces on your cluster then you’re wrong. You’re actually just putting everything into the default namespace.
Three Ways to Simplify and Secure your Infrastructure using Kubernetes Namespaces
Jul 24, 2020 5:59:56 AM / by Natan Yellin posted in kubernetes, Micro segmentation, microservices, network security, Kubernetes security, namespaces
IAM Role Pod Delegation Checks on AWS Kubernetes Clusters
Sep 16, 2019 9:27:49 AM / by Guest Writer: Twain Taylor posted in AWS, cloud security, kubernetes, microservices, devops, IAM Role
The New Cloud-Native Security Paradigm- Exciting times for me to join Alcide!
Aug 26, 2019 8:41:22 AM / by Amir Ofek posted in cloud security, kubernetes, microservices, devops
Secret-Hunting in Kubernetes
Aug 6, 2019 10:19:28 AM / by Guest Writer: Theo Despoudis posted in cloud security, kubernetes, microservices, devops, alcide advisor
Applications and workloads running on Kubernetes environment, just like any application, requires secrets to gain access to data stored in the database, 1st / 3rd party services or APIs.
Secrets, however, are only effective if they actually remain secret. When secrets leak, attackers will be able to gain access to sensitive data, services or APIs and can potentially put your entire environment and business at risk.
Kubernetes Vulnerability Scanning
Jul 3, 2019 5:24:24 AM / by Guest Writer: Twain Taylor posted in cloud security, kubernetes, microservices, devops
Don’t Let Kubernetes Become a Black Box: Optimizing the K8s Experience
Jun 4, 2019 8:14:06 AM / by Guest Writer: Theo Despoudis posted in cloud security, kubernetes, microservices, devops, alcide advisor
Everyone is talking about Kubernetes these days, and it’s no secret that Kubernetes has emerged as the leading container orchestration tool. There are a variety of reasons for that, ranging from Kubernetes’s open source, community-based development model to helpful technical features like pod security policies and automatic load balancing.
Top 5 Best Practices for Healthy Kubernetes 1.14 Environments
May 2, 2019 4:01:32 AM / by Guest Writer: Eric Bruno posted in cloud security, kubernetes, microservices, devops, alcide advisor
If you work with Kubernetes, you’re probably already familiar with basic Kubernetes best practices guides and patterns. But the recent release of Kubernetes v1.14 has introduced some new features, which in turn necessitate new best practices. Most of them center on security and automation, which are top of the list for operations staff, management, and development alike. But there are some others that factor in as well.
Ready, Set, Go! Kick-Start Your K8s Journey with this 3-day Program
Apr 10, 2019 8:32:19 AM / by Guest Writer: Vince Power posted in cloud security, kubernetes, microservices, devops, kube-advisor
If you believe all the marketing hype, then Kubernetes is the silver bullet to make containers so routine that they’re boring, and your infrastructure will have better harmony than any boy band in history. If only this were true.
Kubernetes 1.14 Release Updates
Apr 4, 2019 3:26:00 AM / by Ori Mendelson posted in cloud security, kubernetes, microservices, devops, kube-advisor
Main highlights include:
- Support for Windows nodes (graduating from Beta to Stable)
- Several kubectl improvements (updated plugin mechanism, kustomize Integration, new documentation website)
- Persistent Local Volumes, which makes locally attached (non-network attached) storage available as a persistent volume source (graduating to GA)
Alcide Integrates with AWS App Mesh to Provide In- and Out-of-Mesh Micro Segmentation
Mar 27, 2019 2:10:00 PM / by Ori Mendelson posted in cloud security, kubernetes, microservices, devops, Istio, App mesh