location_city Tokyo schedule Apr 19th 01:30 - 02:15 PM JST place Room C people 18 Interested

In this talk, we will examine how your business can prevent breaches by eliminating secrets and adopting zero trust. We will examine the core pillars of an identity-native approach to infrastructure management and include real examples of how to implement these controls. 


Outline/Structure of the Talk

This session includes the following items: 

  • Introduction: Security vs Conveniance
  • The pillars of access
    • Connectivity
    • Authentication
    • Authorization
    • Audit
  • Example: Identity-native Kubernetes access
  • Example: Identity-native Database access
  • Conclusion: Where to find more.

Learning Outcome

At the end of this talk, participants will understand the common attack patterns in application hosting environments, and potentital mitigations for these attacks. Participants will have understanding of how to implement zero-trust for application infrastructure, and will be able to take examples back to their own teams for discussion and possible adoption.

Target Audience

DevOps Engineers, Security Engineers, Platform Engineers

Prerequisites for Attendees

Participants in this session should have a basic knowledge of application hosting environments and supporting infrastructure such as compute, databases and orchestration platforms. 

schedule Submitted 3 months ago

  • Nicolas Vermande

    Nicolas Vermande - How To Build Kube-Native CI/CD Pipelines for Containerized Databases

    Nicolas Vermande
    Nicolas Vermande
    Head of DevRel
    Spectro Cloud
    schedule 3 months ago
    Sold Out!
    45 Mins

    There are indubitable advantages when migrating workloads to Kubernetes. The resiliency, scale, and declarative approach of the platform make it a super-powered ally for all applications, including stateful, mission-critical ones, if done properly! As a result, when transitioning to microservices, every developer team manages its own data, middleware, and databases. Automated tests and CI/CD pipelines have to be revisited to include these new requirements. This session will discuss and demonstrate how to provide Kube-Native automated workflows for databases, taking into account new parameters such as database operators, distributed storage, data services, security, and compliance requirements. In this talk, Nic is also going to provide some insights on how to optimize Tekton, a Kube-native Continuous Integration tool, to work with multiple workspaces and overcome some of the affinity limitations. The demonstration will focus on building a comics cards web application using a flask-based frontend and leveraging a backend database to store semi-structured data. It will cover the automation of multiple lifecycle stages, from local laptop testing automation to production deployment in the cloud. Expect a lot of useful tips along the way!