Back To Schedule
Tuesday, May 21 • 14:00 - 15:25
Tutorial: Building Security into Kubernetes Deployment Pipelines - Michael Hough, IBM & Sam Irvine, ControlPlane (Limited Availability; First-Come, First-Served Basis)

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
How secure is your deployment pipeline? Is image integrity verified or can any user deploy any image to production? Are those images scanned for known CVEs? And are security policies enforced to harden the cluster at runtime?

This tutorial covers current best practices for enhanced Kubernetes cluster security. It is led by core contributors and subject matter experts, and provides hands-on experience with Notary, admission controllers, and vulnerability scanning.

It teaches integrating image signing and vulnerability scanning into a pipeline through live examples, and demonstrates how to configure Kubernetes to enforce security policies and image integrity.

Attendees should expect to learn how to utilise state-of-the-art CNCF and OS tooling, and frustrate potential attackers throughout the deployment lifecycle.

avatar for Michael Hough

Michael Hough

Software Engineer, IBM
Michael is a Software Engineer on the IBM Cloud Container Registry team, delivering and operating code using Kubernetes in production, and a contributor to Notary and Portieris. He has presented and led labs about Kubernetes and IBM Cloud Container Service at IBM Technical Universities... Read More →
avatar for Sam Irvine

Sam Irvine

Infrastructure Engineer, ControlPlane
Sam Irvine is an Infrastructure Engineer at ControlPlane, a Kubernetes and pipeline security startup in London, UK. Sam works on delivering Kubernetes platforms and secure pipelines in high compliance environments. Previously, Sam has experience delivering scientific outreach and... Read More →

Tuesday May 21, 2019 14:00 - 15:25 CEST
Hall 8.0 C1