自动化云原生应用的零信任 | KC23

Automating Zero-Trust for Cloud Native Applications - Raul Mahiques & Erin Quill, SUSE

自动化云原生应用的零信任 | Automating Zero-Trust for Cloud Native Applications - Raul Mahiques & Erin Quill, SUSE

零信任是安全领域的热门话题，作为一种解决方案，它可以阻止攻击者利用您的易受攻击的应用程序获取您的数据并深入到基础架构的更深层次。在现代容器化环境中，重要的是将这个概念应用到您能够的每个地方，并且您的应用程序安全策略必须成为自动化部署流程的一部分，以便您的应用程序在启动时受到保护。每次部署新的应用程序版本时，您的安全策略都需要成为流程的一部分。在本次演示中，我们将介绍如何为我们的演示HTTP应用程序创建一个零信任策略，将其纳入您的应用程序部署流水线，并实施自动化测试以验证安全策略不会阻止应用程序的正常运行。通过使用对每个人都可用的开源技术，让安全变得更加简单而有益，跟随我们的旅程。

Zero-Trust is a hot topic in security, as a solution to stop attackers from using your vulnerable applications to gain access to your data and reaching deeper parts of your infrastructure it is important to apply this concept everywhere you can, and in a modern containerized environment that means your application security policies must be part of your automated deployment processes so that your application starts protected. Every time a new application release is deployed your security policies need to be part of the process. During this presentation we will walk through the process of creating a Zero-Trust policy for our demo HTTP application, including it into your application deployment pipeline and implementing automated testing to verify the security policy isn't blocking your application normal functioning. Follow us through the journey of making security less of a pain and more of a gain using open source technologies available to everybody.

CNCF概况（幻灯片）

扫描二维码联系我们！

CNCF (Cloud Native Computing Foundation)成立于2015年12月，隶属于Linux  Foundation，是非营利性组织。 

CNCF（云原生计算基金会）致力于培育和维护一个厂商中立的开源生态系统，来推广云原生技术。我们通过将最前沿的模式民主化，让这些创新为大众所用。请关注CNCF微信公众号。