Tag: Cybersecurity
-
Google Cloud Privileged Access Management
Today’s vast array of identities whether they are human-centric identities or machine-identities have a large amount of permissions tied to them, given the attack surface of cloud identities can be tied to resources that are also mapped to other services this can be a sticky situation. Most hyperscalers have best practices documented on Identity and…
-
Chaos Studio Experiments in AKS
Introduction Chaos Studio was presented as a service in Microsoft Azure that is to measure and understand your applications service resilience, I’ve wrote about using LitmusChaos previously in a blog but felt like I could create more on this topic as application resiliency is not only pivotal to organizations operations. Chaos Engineering is the practice…
-
Kubernetes Bill of Materials – Supply Chain Security
Software Bill of Materials has grown in popularity and adoption from many open source software projects to provide transparency of software supply chain attestation of packages associated with the build of the software. While the aim of Software Bill of Materials aims to reduce or be the front protection in the movement behind software supply…
-
Google Kubernetes with Prometheus
If you’ve been following along in the previous posts I’ve also stated that I’d release more content in regards to infrastructure as code and cloud native security content. Like anything if you’d like to follow along this time I’ll actually have a git repo for you to clone and work through should you like to…
-
How to Evaluate a Cloud Native Application Platform: What to evaluate and consider
In order to evaluate a cloud native application platform, it is important to understand what to look for and the different aspects of architecture. There are many benefits to using a cloud native application platform, including the ability to scale applications and manage resources more effectively. When choosing a platform, it is important to consider…
-
AKS and Prometheus
What is Prometheus? Prometheus is an open source monitoring system which was originally built by SoundCloud. It is now a part of the Cloud Native Computing Foundation. Prometheus scrapes metrics from configured targets at given intervals, evaluates rule expressions, displays the results, and can trigger alerts if some condition is met. Azure Kubernetes Service (AKS)…
-
End of Semester – Progess / Ransomware hits pipelines
Today marks a few things off my calendar, for starters this was finals week which is apparently always a stressful event. While I’ve completed over five courses this semester the challenge of these courses weren’t new and I’m glad it’s behind me. On to more pressing matters, this website will be updated weekly with thoughts,…