Whether you attended virtual KubeCon or not, we have got you covered with a recap of our favourite talks and the latest CNCF trends.
Plus we have a great talk from Catherine and Nilay from Shopify about their newly open sourced tool, Voucher, for securing Kubernetes at scale.
Speakers
Catherine Jones
Shopify
Nilay Shah
Shopify
When
Tuesday, December 1, 2020 5:00 PM – 6:30 PM (UTC)
Agenda
5:00 PM
KubeCon Recap
Get all the latest info about CNCF projects and industry trends from KubeCon North America.
5:30 PM
Securing Kubernetes at Scale with Voucher
By Catherine Jones and Nilay Shah, Shopify -
Users and administrators rely on code signing and verification to ensure that they’re running the software they expect and block malicious software. The goal of Voucher and Binary Authorization is to provide code signing without interrupting developer’s workflows. In conventional computing environments developers and users can rely on code signing and verification to ensure that they’re running the software they think they are and prevent malicious software from being installed. This is used everywhere from App Stores and Linux packages to game console software updates. Until recently Kubernetes has lacked a good way to apply these security techniques, allowing developers to leverage code verification inside of containers but not providing a way to verify the contents of containers easily or block malicious container images. The goal of Google’s Binary Authorization project is to provide effective code signature verification for Kubernetes. Binary Authorization coupled with Voucher, an open source project started by Shopify, provides automatic code signing and verification, without forcing developers to learn cryptography or manage their own signing keys.