Supercharging Workload Security in Your K8s Cluster

Introduction

2019 was a big year for Kubernetes adoption, and 2020 is sure to exceed that pace. Already, we have seen a large number of organizations migrating their workloads to Kubernetes (k8s) both in public and private clouds as they embrace a hybrid cloud strategy. With so much at stake, what are you currently using for network security inside your k8s cluster?

Quick Retro

Let’s take a step back to a time when you were deploying applications to VMs in AWS, GCP or Azure (in the case of public clouds) or vSphere, etc. in private clouds. One of the most important tasks before provisioning infrastructure and deploying applications was to chalk out firewall considerations. These requirements were fulfilled using security group rules in the case of AWS or firewall rules in GCP. We all understand their importance. But doing the same involving Kubernetes was extremely challenging. Today, we can solve those problems for you with just a few clicks.

Present Scenario – What If?

Most recently with the increase in k8s adoption we have seen operations and platform teams hustling to implement a plethora of monitoring tools, logging backends and CI/CD tools. While all of this is Continue reading

Adtran Tackles Small Business With SD-WAN Hardware

By leveraging Intel's x86 architecture, Adtran claims that it is now possible to quickly roll out...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

RSA Conference 2020 Expands Education Programs

RSA Conference, the world’s leading information security conferences and expositions, today...

Read More »

QNA: How Long can an Ethernet Cable Be ?

Ethernet cable length is a function of signal to noise and receiver/transmitter sensitivity.

The post QNA: How Long can an Ethernet Cable Be ? appeared first on EtherealMind.

Day Two Cloud 035: Understanding Kubernetes Operators For Complex Applications

Kubernetes is being used in more and more complex application architectures. It today's episode, we talk about Kubernetes Operators, a way to automate and ensure that complex applications stay up and running. Our guest is Rob Szumski, Senior Manager, Product Management, Red Hat OpenShift.

Day Two Cloud 035: Understanding Kubernetes Operators For Complex Applications

The post Day Two Cloud 035: Understanding Kubernetes Operators For Complex Applications appeared first on Packet Pushers.

Why everything you know about 5G is wrong

If you buy what the telcos are telling you, 5G will bring you gigabit per second speeds and sub-10-millisecond latency. It's a pity that you really won't see anything like that in the real world. Here's the real 5G story.

Perimeter 81 Vows to Win SASE Space Race

“We believe there is a space race right now for SASE,” CEO Amit Bareket said. “Perimeter 81...

Read More »

Docker Donates the cnab-to-oci Library to cnab.io

Docker is proud and happy to announce the donation of our cnab-to-oci library to the CNAB project . This project was created last year after Microsoft and Docker moved the CNAB specification to the Linux Foundation’s Joint Development Foundation. At that time, the CNAB specification repository was moved from the deislab GitHub organization to the new cnabio organization. The reference implementations – cnab-go which is the Golang library implementation of the specification and duffle which is the CLI reference implementation – were also moved.

What is cnab-to-oci for?

Docker helped with the development of the CNAB specification and its reference implementations, and led the work on the cnab-to-oci library for sharing a CNAB bundle using an existing container registry. This library is now used by 3 CNAB tools, Docker App, Porter and duffle, as well as Docker Hub. It successfully demonstrated how to push, pull and share a CNAB bundle using a registry. This work will be used as a foundation for the future CNAB Registries specification.

The transfer is already in effect, so starting now please refer to github.com/cnabio/cnab-to-oci in your Golang imports.

How does cnab-to-oci store a CNAB bundle into a registry?

As you may know, Continue reading

Mavenir Lands Private 5G Network Deals in Japan, Germany

Mavenir’s fully virtualized 4G and 5G open RAN offering became commercially available to...

Read More »

Cisco Previews Managed HyperFlex Application Platform for Kubernetes

AppDynamics Customer Journey Map, HyperFlex Application Platform for Kubernetes, and it has said that all three are expected to be generally available sometime within the next few months. The first two products are meant to provide insight into and optimization of application performance, and even target business metrics such as cost. The HyperFlex Application Platform for Kubernetes, meanwhile, is Cisco’s new managed Kubernetes product, which will not only provide a “turnkey” Kubernetes platform, but also a number of other managed services, including container networking, container storage, ingress and L7 load balancer, logging, monitoring, a container registry, and service mesh. Gerd Altmann from

How cyber attackers hide malware on your network

Knowing where to look for malware lurking on your network gives you a better chance to prevent damage from it.

Using MEDs to optimize internet exchange paths

Last year, we discussed the MED attribute and how it can be useful along the local preference and the AS path as

The post Using MEDs to optimize internet exchange paths appeared first on Noction.

Do We Need Complex Data Center Switches for VMware NSX Underlay

Got this question from one of ipSpace.net subscribers:

Do we really need those intelligent datacenter switches for underlay now that we have NSX in our datacenter? Now that we have taken a lot of the intelligence out of our underlying network, what must the underlying network really provide?

Reading the marketing white papers the answer would be IP connectivity… but keep in mind that building your infrastructure based on information from vendor white papers usually gives you the results your gullibility deserves.

Let’s Encrypt: an automated certificate authority to encrypt the entire web

Let’s encrypt: an automated certificate authority to encrypt the entire web, Aas et al., CCS’19

This paper tells the story of Let’s Encrypt, from it’s early beginnings in 2012/13 all the way to becoming the world’s largest HTTPS Certificate Authority (CA) today – accounting for more currently valid certificates than all other browser-trusted CAs combined. Beyond the functionality that Let’s Encrypt provides, the story stands out to me for two key ingredients. Firstly, whereas normally we trade-off between security and ease-of-use, Let’s Encrypt made the web more secure through ease-of-use. Secondly, Let’s Encrypt managed to find a sustainable funding model for a combination of an open source project and free online service, as compared to the more normal pattern which sadly seems to involve running a small number of beneficent maintainers into the ground.

Since it’s launch in December 2015, Let’s Encrypt has steadily grown to become the largest CA in the Web PKI by certificates issued and the fourth largest known CA by Firefox Beta TLS full handshakes. As of January 21, 2019, the CA had issued a total of 538M certificates for 223M unique FQDNs… Let’s Encrypt has been responsible for significant growth in HTTPS deployment.

Throwing Down The Gauntlet To CPU Incumbents

The server processor market has gotten a lot more crowded in the past several years, which is great for customers and which has made it both better and tougher for those that are trying to compete with industry juggernaut Intel. …

Throwing Down The Gauntlet To CPU Incumbents was written by Timothy Prickett Morgan at The Next Platform.

Network Field Day #NFD22

NSX: Networking and Security

Join us for #NFD22. The agenda is locked down and our in-house VMware experts are ready to go! They will be sharing their NSX know-how on the following:

Full-Stack Kubernetes Networking Services
Seamlessly automate micro-segmentation at scale with NSX Intelligence
Load balancing and Web Application Firewalling across any private or public cloud with NSX Advanced Load Balancer

Here is a snapshot of the agenda and demo times:

The post Network Field Day #NFD22 appeared first on Network Virtualization.

Istio Security Bug Found, Quickly Squashed

The bug was in its authentication policy and allowed an attacker unauthorized access to information...

Read More »

The NFL knows a lot about deploying high-capacity WiFi networks

Everyone watching Super Bowl 2020 witnessed the excitement that filled Hard Rock Stadium, as the Kansas City Chiefs became this year’s champions. (I was cheering hard for the 49ers but want to offer hearty congratulations to the new champs.) What wasn’t visible to the public—yet was omnipresent throughout the venue—was Wi-Fi connectivity that gave fans an enhanced experience during the game.Whether it’s in a hospital, an office building, a university auditorium or a stadium, Wi-Fi scale matters. In hospitals, gameday is every day, and healthcare wireless networks play a vital role. Stadiums don’t always have gameday, but when they do, the WiFi has to work without a glitch.To read this article in full, please click here

Daily Roundup: Judge OKs T-Mobile, Sprint Merger

Judge gave T-Mobile a thumbs up on Sprint merger: IBM found billions of cloud misconfigs; and...

Read More »

« Previous 1 … 1,060 1,061 1,062 1,063 1,064 … 3,872 Next »