rbac

In this episode I talk with Rishi Bhargava who is the Co-Founder of Descope, a company that is revolutionizing how authentication is done within applications. If you enjoy this episode please share it & review the podcast!

We are now live on Youtube! If you want to watch the video of this interview then go to the links below!

LinkedIn: https://www.linkedin.com/in/bhargavarishi/
Website: https://www.descope.com/

Affiliate Links:
NordVPN: https://go.nordvpn.net/aff_c?offer_id=15&aff_id=87753&url_id=902

Follow the Podcast on Social Media!
Instagram: https://www.instagram.com/secunfpodcast/
Twitter: https://twitter.com/SecUnfPodcast
Patreon: https://www.patreon.com/SecurityUnfilteredPodcast
YouTube: https://www.youtube.com/@securityunfilteredpodcast
TikTok: Not today China! Not today

This interview was recorded for GOTO Unscripted at CodeNode in London.
gotopia.tech

Read the full transcription of this interview here

Mark Rendle - Incurable Programmer & Lover of C#, .NET Core, Containers, Clouds & DevOps
Matt Turner - DevOps Leader, Software Engineer at Tetrate

DESCRIPTION
Join Mark Rendle, MS Dev Tech MVP, and Matt Turner, DevOps leader, architect, and engineer at Marshall Wace, in a passionate discussion about gRPC’s past and future and how it fits in with technologies such as .NET and service meshes. They get deep in the weeds on technology cycles while debating the future of infrastructure as a code and Kubernetes. And Mark has a brilliant idea on how to build an alternative to Facebook.

RECOMMENDED BOOKS
Burns, Beda & Hightower • Kubernetes: Up & Running
Burns, Villalba, Strebel & Evenson • Kubernetes Best Practices
Kasun Indrasiri & Danesh Kuruppu • gRPC: Up and Running
Liz Rice • Container Security
Liz Rice • Kubernetes Security
John Arundel & Justin Domingus • Cloud Native DevOps with Kubernetes
Hausenblas & Schimanski • Programming Kubernetes

Twitter
LinkedIn
Facebook

Looking for a unique learning experience?
Attend the next GOTO conference near you! Get your ticket at gotopia.tech

SUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted almost daily.

Twitter
Instagram
LinkedIn
Facebook

Looking for a unique learning experience?
Attend the next GOTO conference near you! Get your ticket: gotopia.tech

SUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted daily!

This interview was recorded for the GOTO Book Club.
http://gotopia.tech/bookclub

Brendan Burns - Co-Author of "Kubernetes: Up & Running" & Co-founder of Kubernetes
Matt Turner - SRE at Marshall Wace

DESCRIPTION
Brendan Burns will take you on a journey through the life of Kubernetes. Where does it stand now, what is its history, and what’s waiting for us in the future that you might not expect?
The interview is based on Brendan's book "Kubernetes: Up & Running": https://amzn.to/3sueuuI

Read the full transcription of the interview here:
https://gotopia.tech/bookclub/episodes/kubernetes-a-journey

RECOMMENDED BOOKS
Burns, Beda & Hightower • Kubernetes: Up & Running • https://amzn.to/3sueuuI
Burns, Villalba, Strebel & Evenson • Kubernetes Best Practices • https://amzn.to/3gBXRsr
Liz Rice • Container Security • https://amzn.to/3oU4iJe
Liz Rice • Kubernetes Security • https://www.oreilly.com/library/view/kubernetes-security/9781492039075
John Arundel & Justin Domingus • Cloud Native DevOps with Kubernetes • https://amzn.to/3hKZvI5
Hausenblas & Schimanski • Programming Kubernetes • https://amzn.to/3qTvKch

https://twitter.com/GOTOcon
https://www.linkedin.com/company/goto-
https://www.facebook.com/GOTOConferences

Looking for a unique learning experience?
Attend the next GOTO conference near you! Get your ticket at https://gotopia.tech

SUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted almost daily.
https://www.youtube.com/user/GotoConferences/?sub_confirmation=1

Twitter
Instagram
LinkedIn
Facebook

Looking for a unique learning experience?
Attend the next GOTO conference near you! Get your ticket: gotopia.tech

SUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted daily!

SHOW: 66

SHOW OVERVIEW: Brian talks with Marc Boorshtein (@mlbian, CTO at Tremolo Security) about trends in Kubernetes security, and how to think about the Kubernetes Extended Authentication Model.

SHOW NOTES:

• Try OpenShift 4 - http://try.openshift.com
• Beyond RBAC in OpenShift – Open Policy Agent
• OpenShift Commons Briefing: Securing OKD at Multiple Layers
• Kubernetes Security 

SHOW TOPICS:

Topic 1 - Welcome back to the show. Your focus is on security. What’s one new thing that’s really interesting to your right now, and what’s one “mundane” thing you’re seeing all the time that isn’t getting enough discussion? 

Topic 2 - A few weeks ago we talked with John Osbourne about “Kubernetes Policy”. This is very different than “Authentication” or “Authorization”. For people that don’t live around security, can you help us understand the difference between policy and the things that make up AAA (Authentication, Authorization and Accounting)?

Topic 3 - You and I were talking a few months ago at OpenShift Commons Gathering in London about “the Kubernetes extended authorization model”, and I wonder if you could elaborate on that a little bit. 

Topic 4 - What are some of the areas where you feel like there isn’t enough awareness, especially for production environments, between policy and AAA models (e.g. Kubernetes elements vs. user-level elements)?

Topic 5 - Give us a quick set of thoughts on how any of this changes if we start doing multi-cluster or Federation. 

FEEDBACK?
Email: PodCTL at gmail dot com
Twitter: @PodCTL
Web: http://podctl.com

In this episode, I answer a question about how to control docker and other containers like a nginx proxy from inside a separate container.

 ★Show Links★

• Docker RBAC example
• Traefik
• Docker Socket Proxy
• My Swarm Stack Examples

You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

Grab the best coupons for my Docker and Kubernetes courses.
Join my cloud native DevOps community on Discord.
Grab some merch at Bret's Loot Box
Homepage bretfisher.com

Show: 15

Show Overview: Brian and Tyler continue their focus on Security with Marc Boorshtein (@mlbiam, CTO of @tremolosecurity), discussing Identity Management, Container and Kubernetes Authorization and Authentication, RBAC, and how IT teams evolve to manage security in more agile environments.
 
Show Notes:

• PodCTL #14 - Security: Hosts, Registries, Content and Pipelines
• [Video] Identity Management and Compliance
• [Video] DevOps Identity Management
• [Website] Tremolo Security
• 10 Layers of Container Security
• Open Source k8s SSO project
• Open Source OpenShift Identity Manager project

Topic 1 - Let’s talk about User authentication in Kubernetes>

• Certificate Authentication 
• OpenID Connect 
• Reverse Proxy

Topic 2 - Let’s dig into the various types of Authorizations

• Overview of RBAC (Role-Based Access Control)
•  Mapping of Roles to Users and Groups 
• Organizational Challenges

Topic 3 - Given that various people (Devs & Ops) interact with dashboards, how do we manage that Authentication?

Topic 4 - How are organizations evolving to keep up with this more agile form of software development and the associated security challenges?

Feedback?

• Email: PodCTL at gmail dot com
• Twitter: @PodCTL 
• Web: http://podctl.com