Cloud Native Stockholm

Kubernetes security with Open Policy Agent and Falco

Attendees:
in-person
Event date
Apr 25, 22
04:45 PM - 08:00 PM CEST
Location
Generator, Torsgatan 10, Stockholm
About this event

We are very happy to announce our first in-person meetup 2022. Today we will put focus on the ever so hot topic Security & Compliance. We’re glad to have four great speakers with us during this early evening. Kenneth Albinsson, Anders Eknert, Peter Andersson and Shayne Clausson

Todays meetup will cover two well-known CNCF Projects within the Security & Compliance space:
Open Policy Agent (OPA) was accepted to CNCF on March 29, 2018 and is at the Graduated project maturity level.
Falco was accepted to CNCF on October 10, 2018 and is at the Incubating project maturity level.

We meet at Generator 5PM sharp. This in-person event will not be broadcasted online, or recorded.
Venue, food and drinks are sponsored by Styra and Sysdig.

Agenda
  1. 4:45 PM CEST

    Doors Open

    in-person

    Grab a coffee, fruit and sweets.

  2. 5:00 PM CEST

    Introduction, Kenneth Albinsson

    in-person

    Welcome and introduction to Cloud Native Computing Foundation (CNCF) and this Community Group. Short information about CNFC Training and the Certified Kubernetes Security Specialist (CKS).

  3. 5:15 PM CEST

    Policy as code - an introduction to Open Policy Agent, Anders Eknert

    in-person

    Recently graduated in the CNCF, Open Policy Agent (OPA) has become the de facto standard for policy enforcement across the cloud native stack. In this presentation, Anders will give an introduction to the project, detailing its purpose as well as some of the most common use cases, along with some real-world examples of policy applied in areas like infrastructure, Kubernetes admission control and application authorization. Finally, we'll take a look at some recent features to land in OPA and how they help simplify the policy authoring process.

  4. 6:00 PM CEST

    Short break – wrap and drink

    in-person

    Fill up the energy tank with drinks and a wrap.

  5. 6:15 PM CEST

    Cloud Native Runtime Security with Falco, Peter Andersson

    in-person

    What if we can detect abnormal behavior in the application, container runtime, cloud & cluster environment using the same process?

    In this talk, we’ll present Falco a CNCF project for runtime security. We will show how to use Falco to tap into Linux system calls, the Kubernetes audit logs, and cloud events to provide low-level insight into application and platform behavior, and how to write security rules to detect abnormal behavior. Finally, we’ll end with taking a forensic capture of a security anomaly and performing a more detailed analysis of the event.

  6. 7:00 PM CEST

    End-user presentation by Extenda Retail on OPA, Shayne Clausson

    in-person

    Shayne discuss how Open Policy Agent and Styra Declarative Authorization Service provide Extenda Retail with a unified approach to authorization that speeds deployment, increases productivity and proves compliance.

  7. 7:30 PM CEST

    Networking and drinks

    in-person

    Time to chat with old and new friends. Maybe get a demo of Styra and Sysdig?

Speakers
Organizers