Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Linux Foundation

Vulnerabilities and Misconfigurations in Cloud-Native Security - Two Sides of the Same Risk Coin

Linux Foundation via YouTube

Overview

Explore the interconnected risks of vulnerabilities and misconfigurations in cloud-native environments during this 46-minute Linux Foundation webinar. Delve into the evolving attack surface created by DevOps and cloud-native technologies, examining how open-source packages, infrastructure as code, container images, and delivery pipelines form complex interdependencies. Learn about software supply chain attacks that leverage infrastructure misconfigurations and known vulnerabilities, using the Log4j flaw as a case study. Gain insights into the necessity of a proactive, defense-in-depth approach to cloud-native security and discover strategies for comprehensive protection across entire cloud-native application stacks, from code to cloud and application to infrastructure. Topics covered include open source challenges, vulnerability databases, software composition analysis, sources of vulnerabilities, and practical examples to illustrate key concepts.

Syllabus

Introduction
Open Source Challenges
Why Open Source
Vulnerability Databases
Open Source Licenses
Early Detection
Software Composition Analysis
Context
Culture
Safety Security
Checkouts Gun
Log4J Example
Sources of Vulnerabilities
Checkoff
Summary

Taught by

Linux Foundation

Reviews

Start your review of Vulnerabilities and Misconfigurations in Cloud-Native Security - Two Sides of the Same Risk Coin

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.