Cloud Native Security Con with Emily Fox

Kubernetes Podcast from Google

Episode | Podcast

Date: Fri, 03 Mar 2023 10:06:00 +0000

<p dir="ltr"><a href="https://www.linkedin.com/in/themoxiefox/">Emily Fox</a> is a security engineer @Apple Cloud Services, a CNCF Technical Oversight Committee member and co-chair for a bunch of CNCF events including recently the Cloud Native Security Conference in Seattle.</p> <p dir="ltr">We had a chance to talk to Emily about the first edition of the CNSC 2023, her involvement with the CNCF community. Her role as a security engineer and some career discussions.</p> <p><strong> </strong></p> <p dir="ltr">Do you have something cool to share? Some questions? Let us know:</p> <p dir="ltr">- web: <a href="https://kubernetespodcast.com">kubernetespodcast.com</a></p> <p dir="ltr">- mail: <a href="mailto:kubernetespodcast@google.com">kubernetespodcast@google.com</a></p> <p dir="ltr">- twitter: <a href="https://twitter.com/kubernetespod">@kubernetespod</a></p> <h2 dir="ltr"> </h2> <h2 dir="ltr">News of the week</h2> <p dir="ltr"><a href="https://www.cncf.io/blog/2023/02/27/kubeedge-cncfs-first-slsa-3-project/"> KubeEdge v1.13.0 released on January 18, 2023, achieves SLSA 3 compliance</a></p> <p dir="ltr"><a href="https://slsa.dev/spec/v0.1/levels">SLSA 3 compliance</a></p> <p dir="ltr"><a href="https://www.cncf.io/blog/2023/02/27/kubevela-brings-software-delivery-control-plane-capabilities-to-cncf-incubator/#:~:text=The%20CNCF%20Technical%20Oversight%20Committee,%2C%20faster%2C%20and%20more%20reliable."> KubeVela brings software delivery control plane capabilities to CNCF Incubator</a></p> <p dir="ltr">GKE Updates:</p> <ul> <li dir="ltr"> <p dir="ltr"><a href="https://cloud.google.com/kubernetes-engine/docs/concepts/autopilot-compute-classes#when-to-use"> Balanced compute classes are now offered in GKE Autopilot</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://cloud.google.com/kubernetes-engine/docs/how-to/autopilot-hostport"> GKE Autopilot now supports exposing randomly assigned host ports for pods</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://cloud.google.com/kubernetes-engine/docs/how-to/persistent-volumes/local-ssd"> GKE has started offering ephemeral storage with local SSDs</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://cloud.google.com/kubernetes-engine/docs/how-to/creating-a-cluster-windows#choose_your_windows_server_node_image"> Added support for Windows Server 2022 nodes</a></p> </li> </ul> <p dir="ltr"><a href="https://aws.amazon.com/blogs/containers/announcing-general-availability-of-amazon-eks-anywhere-on-snow/"> AWS announced the availability of AKS anywhere on Snowball Edge Devices</a></p> <p dir="ltr"><a href="https://sysdig.com/blog/2023-cloud-native-security-usage-report/">Sysdig released their 6th annual Cloud Native Security and Usage Report.</a></p> <p dir="ltr"><a href="https://www.cncf.io/blog/2023/02/27/rebooting-the-cloud-native-hamburg-community-group/"> Rebooting the Cloud Native Hamburg community group</a></p> <p dir="ltr"><a href="https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/program/schedule/"> KubeCon EU Amsterdam Schedule</a></p> <p dir="ltr"><a href="https://kubernetes.io/blog/2023/02/14/kubernetes-katacoda-tutorials-stop-from-2023-03-31/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> Katacoda Kubernetes tutorials shutdown</a></p> <p dir="ltr"><a href="https://www.secondstate.io/articles/lfx-mentorship-wasmedge-mar-2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> LFX Internships for WASMEdge</a></p> <p dir="ltr">Kubernetes Community Days (KCDs):</p> <ul> <li dir="ltr"> <p dir="ltr">Upcoming CFP deadlines:</p> </li> <ul> <li dir="ltr"> <p dir="ltr">KCD Italy <a href="https://kcd.smapply.io/prog/kcd_italy_cfp_2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes February 20 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Czech + Slovak <a href="https://kcd.smapply.io/prog/kcd_czech_slovak/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 1, 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Bangaluru <a href="https://kcd.smapply.io/prog/kcd_bengaluru_cfp_2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 20, 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Zurich <a href="https://kcd.smapply.io/prog/kcd_zurich_2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 31, 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Colombia <a href="https://kcd.smapply.io/prog/kcd-colombia-2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 31, 2023</a> (in-person)</p> </li> </ul> <li dir="ltr"> <p dir="ltr"> Check out upcoming KCDs that might be in your region:</p> <ul> <li dir="ltr"> <p dir="ltr"><a href="https://docs.google.com/presentation/d/e/2PACX-1vTTor7CqbM3theZUwJqNs2aV8cOW569D0RjaIpJGzyM8ml_TNwsp12QIb_oXgSsepfZD5FO_4CY-MdV/pub?start=false&amp;loop=false&amp;delayms=30000&amp;slide=id.g7de298ebf2_0_0&amp;utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> Sponsorship opportunities</a> are available</p> </li> </ul> <ul> <li dir="ltr"> <p dir="ltr"><a href="https://docs.google.com/presentation/d/1TGtudMBTzfeEDszsmOZHSp8fiNQvmo-54lkBFAkH04o/edit?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0#slide=id.g1c2734236f3_0_16"> Donation Prospectus</a> available for review</p> </li> </ul> </li> <ul> <li dir="ltr"> <p dir="ltr"><a href="https://www.cncf.io/blog/2023/02/24/celebrating-israels-first-kubernetes-community-days-a-look-at-the-history-of-our-cncf-community/"> KCD</a> Israel 2023, <span> Mar 23, 2023</span></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://community.cncf.io/events/details/cncf-kcd-los-angeles-presents-kcd-los-angeles-at-scale-20x/"> KCD LA</a>, <span> Mar 9, 2023</span></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://community.cncf.io/events/details/cncf-kcd-pakistan-presents-kubernetes-community-days-pakistan-2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Pakistan</a> (Islamabad), February 20, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://community.cncf.io/kcd-netherlands/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Netherlands</a> (Amsterdam), February 23-24, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://community.cncf.io/events/details/cncf-kcd-france-presents-kubernetes-community-days-france-2023/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD France</a> (Paris), March 7, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://community.cncf.io/events/details/cncf-kcd-los-angeles-presents-kcd-los-angeles-at-scale-20x/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Los Angeles</a>, March 9-10, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://community.cncf.io/events/details/cncf-kcd-ukraine-presents-kcd-ukraine-2023-fundraiser/?utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Ukraine</a> Virtual Fundraiser, March 16, 2023</p> </li> </ul> </ul> <h2 dir="ltr"> </h2> <h2 dir="ltr">Links from the interview</h2> <p dir="ltr">Emily Fox:</p> <ul> <li dir="ltr"> <p dir="ltr"><a href="https://twitter.com/TheMoxieFox">Twitter</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/themoxiefox/">Linkedin</a></p> </li> </ul> <p dir="ltr"><a href="https://www.youtube.com/watch?v=jXcYiiJ-BBg&amp;list=PLj6h78yzYM2NQ-Zi_k5qVmZyxSmLBzM6V"> Cloud Native Security Con Youtube Playlist</a></p> <p dir="ltr"><a href="https://www.youtube.com/watch?v=6Zz798IW8Gs">How to Secure Your Supply Chain at Scale - Hemil Kadakia & Yonghe Zhao, Yahoo</a></p> <p dir="ltr"><a href="https://www.tigera.io/learn/guides/ebpf/">eBPF</a></p> <p dir="ltr"><a href="https://securityscorecard.com/blog/what-is-the-cia-triad/">CIA Triad</a></p> <p dir="ltr"><a href="https://business.adobe.com/blog/basics/waterfall#:~:text=The%20Waterfall%20methodology%20%E2%80%94%20also%20known,before%20the%20next%20phase%20begins."> Waterfall development</a></p> <p dir="ltr"><a href="http://cloudcareers.dev">Cloudcareers.dev podcast</a></p> <p dir="ltr"><a href="https://twitter.com/raesene">Rory McCune on twitter</a></p> <p dir="ltr"><a href="https://www.redhat.com/en/topics/security/what-is-software-supply-chain-security"> Software Supply Chain Security</a></p> <p dir="ltr"><a href="https://www.youtube.com/watch?v=XNH-DebkJo0">Emily Fox on SBOM</a></p> <p dir="ltr"><a href="https://www.youtube.com/watch?v=jHR_sAYGGAw">Emily Fox on SDLC</a></p> <p dir="ltr"><a href="https://www.redhat.com/en/topics/security/what-is-software-supply-chain-security"> Shift Left Security: Best Practices for Getting Started</a></p> <p dir="ltr"><a href="https://kubernetespodcast.com/episode/196-kubernetes-registry/">Episode 196 with Benjamin Elder</a></p> <p dir="ltr">CNSC 2023 seattle guests</p> <ul> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/davidwolf/">David Wolf</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/eric-knauer-5a5225/">Eric Knauer</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://uk.linkedin.com/in/lizrice">Liz Rice</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/mitchconnors/">Mitch Connors  </a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/josh-knarr-5a2a182b/">Josh Knarr</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/youngnickinsyd/">Nick Young</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="https://www.linkedin.com/in/onlydole/">Taylor Dolezal</a></p> </li> </ul> <p dir="ltr"><a href="https://www.youtube.com/watch?v=4xK3Vv_rPbg&amp;list=PLj6h78yzYM2NQ-Zi_k5qVmZyxSmLBzM6V&amp;index=25"> Frederick Kautz on SPIFFE/SPIRE</a></p> <p dir="ltr"><a href="https://www.aniszczyk.org/">Chris Aniszczyk's Blog</a></p> <p dir="ltr"><a href="https://falco.org/">The Falco Project</a></p> <p dir="ltr"><a href="https://github.com/cilium/tetragon">Cilium Tetragon</a></p> <p dir="ltr"><a href="https://docs.px.dev/">Pixie</a></p> <p dir="ltr"><a href="https://aviatrix.com/">Aviatrix</a></p> <p dir="ltr"><a href="https://keylime.dev/">Keylime</a></p> <p dir="ltr"><a href="https://cloud.google.com/anthos">Google Anthos</a></p> <p dir="ltr"><a href="https://www.youtube.com/watch?v=GUmot7xrY3g&amp;list=PLj6h78yzYM2NQ-Zi_k5qVmZyxSmLBzM6V&amp;index=38"> Beyond Cluster-Admin: Getting Started with Kubernetes Users and Permissions - Tiffany Jernigan</a></p> <p dir="ltr"><a href="https://www.youtube.com/watch?v=ArZYJ1LCCT4">Standardization & Security - A Perfect Match - Ravi Devineni & Vinny Carpenter, Northwestern Mutual</a></p> <p dir="ltr"><a href="https://www.youtube.com/watch?v=oAJ0Pq0l_RY">CSI Container: Can You DFIR It? - Alberto Pellitteri & Stefano Chierici, Sysdig</a></p> <p dir="ltr"><strong> </strong></p> <h2 dir="ltr">Links from the post-interview chat</h2> <p dir="ltr"><a href="https://events.linuxfoundation.org/cloud-native-securitycon-europe/"> Cloud Native Security Con Eu 2023</a></p> <p dir="ltr"><a href="https://www.cncf.io/people/technical-oversight-committee/">CNCF TOC</a></p>