A Look Under the Hood of CNCF Security Audits
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore the intricacies of CNCF security audits in this informative conference talk by Adam Korczynski and David Korczynski from Ada Logics. Gain insights into the graduation requirements for CNCF projects, including the mandatory third-party security audit process. Discover the behind-the-scenes progression of security audits, project expectations, and outcomes based on the speakers' extensive experience auditing six CNCF projects: Flux, CRI-O, KubeEdge, Argo, Istio, and Cilium. Learn about common vulnerabilities found during audits, mitigation strategies, and the importance of publishing results publicly. Understand how audit reports benefit contributors, adopters, and security researchers looking to enhance project security. Delve into both high-level problems and technical security issues faced by CNCF projects, providing a comprehensive overview of the security landscape in cloud-native computing.
Syllabus
A Look Under the Hood of CNCF Security Audits - Adam Korczynski & David Korczynski, Ada Logics
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network