Loading…
Back To Schedule
Wednesday, November 20 • 5:20pm - 5:55pm
Knative - The Security Platypus? - Ariel Shuper, Aqua Security

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Knative provides a way to extend Kubernetes to run serverless workloads. Although it runs as pods, given the nature of those workloads it requires an approach to security that is distinct from standard Kubernetes security practices. As 18th century explorers were wondering when they first encountered the platypus, is it a duck? an otter? or something else?
In this talk Ariel reviews the serverless threat landscape, which is quite differentiated from the container equivalent, using examples of how coding mistakes may expose applications despite the extremely ephemeral workloads.
This talk will show how combining preventative methods and more "offensive" methods such as tripwires can provide much better visibility and reduce the risk of Knative workloads being used as attack vehicles to reach other areas of the cluster or application.
Finally, the platypus question will be resolved.

Speakers
avatar for Ariel Shuper

Ariel Shuper

VP, Product Management, Portshift
Ariel Shuper is Vice President of proudct management at Portshift Security, specializing in cloud native identity based security for micro services. He specialized in serverless environments as an entrepreneur prior to joining Aqua. He also focuses on other innovative cloud native... Read More →