YoVDO

gVisor and Falco - Strengthening Kubernetes and Container Security with Visibility

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Kubernetes Courses Container Security Courses Runtime Security Courses Cloud-Native Security Courses Falco Courses gVisor Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore container security strategies in Kubernetes environments through this 44-minute conference talk. Dive into the challenges of container sandboxing and learn about Falco, a powerful open-source tool for runtime security. Understand how gVisor works to enhance container isolation and discover the synergy between gVisor and Falco for improved security without sacrificing visibility. Examine the evolution of Falco's architecture and its integration with gVisor. Gain insights into the benefits of combining these technologies for enhanced Kubernetes security and learn how to leverage community support for further advancements in container protection.

Syllabus

Intro
It takes a team!
Container sandboxing security challenge
About Falco
How Falco works
Running Falco
How gVisor works
Prevention != Detection
gVisor isolation confused Falco
gVisor Kernel to the rescue!
One Falco instance per node
Falco architecture evolution
Calling on the community
Falco+gVisor user benefits


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Cloud Security Risks: Identify and Protect Against Threats
Google Cloud via Coursera Kubernetes and Cloud Native Security Associate (KCSA) Cert Prep
LinkedIn Learning 12 Essential Requirements for Policy Enforcement and Governance with OSCAL
CNCF [Cloud Native Computing Foundation] via YouTube Running at Light Speed - Cloud Native Security Patterns
LASCON via YouTube A 10-Step Guide for Integrating Security Metrics Into Your Observability Stack
CNCF [Cloud Native Computing Foundation] via YouTube