Koray Oksay
Kubernetes Consultant @Kubermatic
Istanbul, Turkey
Actions
He works at Kubermatic as a Kubernetes Consultant and Trainer to help companies with their cloud-native journey. Before that, he worked for startup and enterprise companies in the advertising, banking, and telecom industries as SysAdmin, Application Admin, DevOps Engineer, and SRE for more than 20 years.
Links
Area of Expertise
Topics
Fast & Secure: Package, Sign, Verify, and Deploy
Supply chain security is crucial for the platform engineering teams. In addition to security concerns, they need to provide seamless and efficient tools for their clients.
This session delves into the intersection of supply chain security and platform engineering by exploring GitOps, Sigstore, and OCI artifacts and registries. Attendees will learn how easy it is to store helm releases in an OCI registry, secure them with Cosign, and verify the signature with Flux with a well-designed demo.
Helm supports OCI registries since version 3.8.0. Flux can verify packages signed with Cosign. We will demonstrate using all these features with the Zot registry and showcase supply chain security.
No More YAML Soup: Taking Control with Dagger's Pipeline-as-Code Philosophy
In today's fast-paced software development landscape, maintaining complex, YAML-based CI/CD pipelines can become a bottleneck, leading to what many developers lament as "YAML Soup". This talk proposes a revolutionary shift with the adoption of Dagger, developed by Solomon Hykes's team, which replaces traditional, error-prone scripting with a robust, language-agnostic API and cross-language scripting engine. This session aims to demonstrate how Dagger enables developers to write their pipelines as code directly within the language of their project, thereby enhancing readability, maintainability, and scalability.
We will start with an overview of Dagger, discussing its core concepts and advantages over traditional pipeline configurations. The presentation will include a detailed walkthrough of transitioning from a YAML-based pipeline to a Dagger-based setup, illustrating the process with real-world examples and best practices.
Securing Your Kubernetes Workloads with Kyverno
Kubernetes has become the de facto standard for container orchestration, enabling developers to deploy applications in a distributed environment easily. However, managing security policies and compliance requirements can be challenging, especially when dealing with a large number of clusters and workloads.
This talk will explore how Kyverno, an open-source Kubernetes-native policy engine, can help secure your Kubernetes workloads by automating policy management and enforcement. We will dive into the architecture of Kyverno, its features, and use cases and discuss how it can be used to implement policies for security, compliance, and resource optimization.
If you are a Kubernetes user looking to simplify policy management and enforce compliance requirements, this talk is for you. You will learn how Kyverno can help you automate policy management and enforce policies at scale, making it easier to secure your Kubernetes workloads.
Securing the Kubelet API: Why is it important?
Kubelet is a crucial component of Kubernetes that runs on each node and is responsible for managing container runtime, monitoring container health, and reporting node status to the control plane. However, this critical component is often overlooked regarding security, leaving the cluster vulnerable to potential attacks.
This talk will explore the importance of securing the Kubelet API and the risks of exposing it with a demo.
Dockerfile Best Practices - How to create secure and efficient images
This talk will provide best practices for writing Dockerfiles to improve build performance, enhance security and reduce final image size.
ContainerDays Conference 2024 Sessionize Event Upcoming
KCD Munich 2024 Sessionize Event
ContainerDays 2023 Sessionize Event
Kubernetes Community Days Munich 2023 Sessionize Event
ContainerDays 2021 Sessionize Event
Koray Oksay
Kubernetes Consultant @Kubermatic
Istanbul, Turkey
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top