3 years ago

Category: Software, Security, Kubernetes

Honeycomb is sponsoring The New Stack’s coverage of Kubecon+CloudNativeCon North America 2020. It turns out, there are loads of lessons to apply from this pandemic to software security in distributed systems.

The beauty of the cloud is to take snapshots and to replicate and to go back in time to make sense of it and build it back together,” Nóva said.

Right away the whole point of Kubernetes is that it gives you a set of abstractions that make it easy and convenient for you to access other pieces of your infrastructure in the same cluster, which from an attacker’s perspective is fascinating because theoretically once you compromise the [authentication] material, you not only have access to other nodes in the cluster, but you have a wonderful set of tools that people put a lot of time and effort making it convenient for you to access other nodes in the cluster, as well,” Nóva said.

Nóva emphasized that “We see that quarantine is important here but more important than that is the ability to take action and to understand that once you have one potential compromise you can see that spread to other parts of your infrastructure.”