Session
Bridging the Gap: Achieving Security and Observability Harmony with User and Kernel Synergy
Securing your applications with a defense in depth architecture and gaining visibility in your application behavior are the two essential requirements to be successful in any modern cloud native deployment. While Istio provide these capabilities via a user-space proxy mechanism, injecting sidecars proxies for all your applications is only sometimes feasible. On the other hand, Kernel technologies like eBPF, when used in a CNI like Cilium, provide security and metrics transparently but need more richness of information and policy capabilities provided by a layer 7 proxy with solid identities.
In this session, I will present how we can leverage capabilities provided by both these technologies and achieve better security and observability, ensuring all your applications can have a uniform policy and visibility irrespective of whether they are in the mesh or not or if they are running as a container in K8s or long-running VM where making privileged changes are often not possible.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top