This week's articles
NSA Kubernetes Hardening Guidance
#defend, #design, #kubernetes
The Kubernetes Hardening Guidance from NSA everyone has been talking about for the past week. It includes hardening strategies to avoid common misconfigurations and guides on how to deploy Kubernetes, with example configurations for the recommended hardening measures and mitigations.
Threat Hunting with Kubernetes Audit Logs
Post from Square going through the basics of Kubernetes audit logs, and how we can use these audit logs effectively to hunt for attackers in our Kubernetes clusters.
Launching our new Google Identity Services APIs
Google launched a new family of Identity APIs called Google Identity Services
, which consolidates multiple identity offerings under one software development kit (SDK). This SDK includes the Sign in with Google button as well as One Tap, a new low-friction authentication prompt. Sign in with Google and One Tap use secure tokens, rather than passwords, to sign users into partner websites and apps.
Announcing HCP Vault Starter
HashiCorp announced a new fully managed Vault offering called "Starter" for AWS environments on the HashiCorp Cloud Platform (HCP). The new Starter cluster is a production-grade, 3-node cluster.