Service Aware Zero Trust Container Network and Its Offloading to DPU
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore a comprehensive conference talk on implementing a service-aware zero trust container network with DPU offloading. Delve into the challenges of flat network security in cloud-native environments and learn how service encryption-based zero trust offers a solution. Compare current approaches like sidecar envoy mTLS and OVN IPsec, examining their limitations in CPU consumption, pod injection requirements, and service visibility. Discover an innovative approach that offloads mTLS, transparent IPsec, and OVS to DPU, redesigning workflows to overcome DPU limitations. Gain insights into achieving a zero-injection, service-aware zero trust container network with line-rate performance. Examine proposed modifications to open-source OVS for meeting service-aware zero trust requirements in this 45-minute presentation by Arthur Xiang from Digitalchina.
Syllabus
Service Aware Zero Trust Container Network and Its Offloading to DPU - Arthur Xiang, Digitalchina
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Building on Microsoft Sentinel PlatformMicrosoft via YouTube Securing Applications and Infrastructure on Kubernetes with Sysdig
Mirantis via YouTube Container Escape in 2021
Hack In The Box Security Conference via YouTube Running at Light Speed - Cloud Native Security Patterns
LASCON via YouTube Controlled Mayhem With Cloud Native Security Pipelines
OWASP Foundation via YouTube