Cloud Native Security 101 - Building Blocks, Patterns and Best Practices
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Intro
Anatomy of Cloud Native Application
Cloud Native Acronym
CNAPP Building Blocks
Cloud Attack Vectors
Kubernetes Attack Vectors
Container Workload Attack Vectors
Lifecycle of Cloud Native Application
Secure Cloud Native Application
Container In-Use vulnerabilities Prioritization
Container Image Signing
Gatekeeper pattern (AC)
Base Image & Layer Analysis
Continuous & Actionable Compliance
Risk Assessment and Prioritization
Cloud Security Personas
DevSecOps (workload integrity)
DevSecOps (Admission Controller)
laC security (build phase)
Takeaways
Taught by
CNCF [Cloud Native Computing Foundation]