Rootconf Sessions

Rootconf Sessions

Presentations on DevOps and Dev-Oops

Make a submission

Accepting submissions till 31 Dec 2020, 11:59 PM

DevOps and Dev-Oops sessions cover:

  1. DevOps (obviously!)
  2. Databases and database disasters
  3. Distributed systems
  4. Systems engineering
  5. Infrastructure security
  6. War stories, failures and anti-patterns with running operations and infrastructure

Rootconf is a forum for:

  1. DevOps engineers
  2. Systems engineers
  3. Software engineers
  4. DevOps leads
  5. Infrastructure security professionals and experts
  6. Cloud service providers
  7. Providers of the pieces on which an organization’s IT infrastructure runs -- monitoring, log management, alerting, etc
  8. Engineering managers looking to optimize infrastructure and teams

Contact information: If you have questions, call Rootconf on 7676332020 or email rootconf.editorial@hasgeek.com

Hosted by

Rootconf is a community-funded platform for activities and discussions on the following topics: Site Reliability Engineering (SRE). Infrastructure costs, including Cloud Costs - and optimization. Security - including Cloud Security. more

Abhay Bhargav

@abhaybhargav

Tesseract Incursion: Real World Attacks and Defenses for Kubernetes Clusters

Submitted Sep 5, 2020

Kubernetes has now entered the domain of “critical infrastructure” for several organizations. Like it or not, Container Orchestration, especially with Kubernetes, is here to stay. However, Kubernetes is not without its “shoot yourself in the foot” security issues. Its a complex and large-scope system and requires a deep understanding of Kubernetes as a system, its security options and limitations.

This talk by Abhay, is based on his renowned training at BlackHat USA 2020 on Kubernetes. The talk is an action-packed (read demo-packed) tour of Kubernetes Attack and Defense possibilities. The talk will focus on actionable elements of Kubernetes Security, backed by extensive research done by Abhay and his team at we45.

Outline

  • Very quick intro to Kubernetes and Kubernetes Security Landscape
  • Demo of possible Kubernetes Attacks and how they happen
  • Implementation Possibilities with some key Kubernetes Controls and Security Tools

Requirements

NA

Speaker bio

Abhay Bhargav is the Founder of we45, a focused Application Security Company. Abhay is a builder and breaker of applications. He is the Chief Architect of “Orchestron", a leading Application Vulnerability Correlation and Orchestration Framework.

He has created some pioneering works in the area of DevSecOps and AppSec Automation, including the world’s first hands-on training program on DevSecOps, focused on Application Security Automation. In addition to this, Abhay is active in his research of new technologies and their impact on Application Security, namely Containers, Orchestration and Serverless Architectures.

Abhay is a speaker and trainer at major industry events including DEF CON, BlackHat, OWASP AppSecUSA, EU and AppSecCali. His trainings have been sold-out events at conferences like AppSecUSA, EU, AppSecDay Melbourne, CodeBlue (Japan), BlackHat USA 2019, SHACK and so on.

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Make a submission

Accepting submissions till 31 Dec 2020, 11:59 PM

Hosted by

Rootconf is a community-funded platform for activities and discussions on the following topics: Site Reliability Engineering (SRE). Infrastructure costs, including Cloud Costs - and optimization. Security - including Cloud Security. more