Securing Kubernetes Manifests with Sigstore and Kyverno
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore how to establish trust and protect the integrity of Kubernetes resources in this conference talk. Learn to use Sigstore for signing YAML definitions and Kyverno for verifying resources during admission controls. Discover real-world use cases for resource signing, including tamper-prevention and approval workflows, utilizing open-source tools like Cosign and Kyverno. Gain insights into Kubernetes' powerful declarative configuration management system and how to enhance its security. Presented by Jim Bugwadia from Nirmata and Yuji Watanabe from IBM Research, this 22-minute talk offers valuable knowledge for developers and end-users working with Kubernetes and other CNCF-hosted projects.
Syllabus
Securing Kubernetes Manifests with Sigstore and Kyverno - Jim Bugwadia, Nirmata & Yuji Watanabe
Taught by
CNCF [Cloud Native Computing Foundation]