Topology Routing & Runtime Security w/Falco

Name: Topology Routing & Runtime Security w/Falco
Start: 2020-03-02T16:30:00+01:00
End: 2020-03-02T19:30:00+01:00
Location: 3Shape

Copenhagen

Mar 2, 2020, 3:30 – 6:30 PM

In-person event

About this event

It's time for yet another Cloud Native Copenhagen meetup! This time we are doing deep dives into networking and security.
AGENDA
--------------------
16:30 Doors open & Welcome
16:45: "Topology-based Service Routing"
17:30: Break with food
18:00: "Container Runtime Security with Falco"
18:45: Networking
19-ish: Thank you and good bye!
TALKS
--------------------
TALK #1: "Topology-based Service Routing"
Speaker: Hans Duedal, Unity
In this talk we'll deep dive on an alpha feature of Kubernetes 1.17; "Service Topology". This feature can be used to route traffic to services based on various topology based logic, ie. you can use it to prefer nodes that is in the same availability zone (AZ). Crossing availability zones can mean sending traffic to a different datacenter, potentially many kilometres away, which means increased latency and cost because cloud providers charge for data between AZs.
TALK #2: "Container Runtime Security with Falco"
Speaker: Chris Kranz, Sysdig
In this talk, we’ll present Falco, a CNCF Incubator project for runtime security. We will show how Falco taps Linux system calls & the Kubernetes API to provide low level insight into application behavior, & how to write Falco rules to detect abnormal behavior. We’ll show how to collect & aggregate alerts using an EFK stack (Elasticsearch, Fluentd, Kibana). Finally we will show how Falco can trigger functions to stop abnormal behavior, & isolate the compromised Pod or Node for forensics.
SPEAKER BIOS
--------------------
Hans recently joined Unity after working both as CTO and a SRE for Visma. He loves making stuff scale and be fast. He also has a passion for computer games and networking, and on his spare time builds huge networks for DKs largest gaming event; NPF.
Chris loves this industry because it's constantly innovating and changing, which means he needs to help those he work with to stay at their best. At Sysdig they spend their days making sure their customers can get the best out of their Kubernetes, OpenShift, GKE, EKS, etc. container environments and support applications securely and confidently in production use.