Cloud Native Security Con with Emily Fox

Kubernetes Podcast from Google

Episode | Podcast

Date: Fri, 03 Mar 2023 10:06:00 +0000

<p dir="ltr"><a href="">Emily Fox</a> is a security engineer @Apple Cloud Services, a CNCF Technical Oversight Committee member and co-chair for a bunch of CNCF events including recently the Cloud Native Security Conference in Seattle.</p> <p dir="ltr">We had a chance to talk to Emily about the first edition of the CNSC 2023, her involvement with the CNCF community. Her role as a security engineer and some career discussions.</p> <p><strong> </strong></p> <p dir="ltr">Do you have something cool to share? Some questions? Let us know:</p> <p dir="ltr">- web: <a href=""></a></p> <p dir="ltr">- mail: <a href=""></a></p> <p dir="ltr">- twitter: <a href="">@kubernetespod</a></p> <h2 dir="ltr"> </h2> <h2 dir="ltr">News of the week</h2> <p dir="ltr"><a href=""> KubeEdge v1.13.0 released on January 18, 2023, achieves SLSA 3 compliance</a></p> <p dir="ltr"><a href="">SLSA 3 compliance</a></p> <p dir="ltr"><a href=",%2C%20faster%2C%20and%20more%20reliable."> KubeVela brings software delivery control plane capabilities to CNCF Incubator</a></p> <p dir="ltr">GKE Updates:</p> <ul> <li dir="ltr"> <p dir="ltr"><a href=""> Balanced compute classes are now offered in GKE Autopilot</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href=""> GKE Autopilot now supports exposing randomly assigned host ports for pods</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href=""> GKE has started offering ephemeral storage with local SSDs</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href=""> Added support for Windows Server 2022 nodes</a></p> </li> </ul> <p dir="ltr"><a href=""> AWS announced the availability of AKS anywhere on Snowball Edge Devices</a></p> <p dir="ltr"><a href="">Sysdig released their 6th annual Cloud Native Security and Usage Report.</a></p> <p dir="ltr"><a href=""> Rebooting the Cloud Native Hamburg community group</a></p> <p dir="ltr"><a href=""> KubeCon EU Amsterdam Schedule</a></p> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> Katacoda Kubernetes tutorials shutdown</a></p> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> LFX Internships for WASMEdge</a></p> <p dir="ltr">Kubernetes Community Days (KCDs):</p> <ul> <li dir="ltr"> <p dir="ltr">Upcoming CFP deadlines:</p> </li> <ul> <li dir="ltr"> <p dir="ltr">KCD Italy <a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes February 20 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Czech + Slovak <a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 1, 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Bangaluru <a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 20, 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Zurich <a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 31, 2023</a> (in-person)</p> </li> <li dir="ltr"> <p dir="ltr">KCD Colombia <a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> CFP closes March 31, 2023</a> (in-person)</p> </li> </ul> <li dir="ltr"> <p dir="ltr"> Check out upcoming KCDs that might be in your region:</p> <ul> <li dir="ltr"> <p dir="ltr"><a href=";loop=false&amp;delayms=30000&amp;slide=id.g7de298ebf2_0_0&amp;utm_source=hs_email&amp;utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> Sponsorship opportunities</a> are available</p> </li> </ul> <ul> <li dir="ltr"> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0#slide=id.g1c2734236f3_0_16"> Donation Prospectus</a> available for review</p> </li> </ul> </li> <ul> <li dir="ltr"> <p dir="ltr"><a href=""> KCD</a> Israel 2023, <span> Mar 23, 2023</span></p> </li> <li dir="ltr"> <p dir="ltr"><a href=""> KCD LA</a>, <span> Mar 9, 2023</span></p> </li> <li dir="ltr"> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Pakistan</a> (Islamabad), February 20, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Netherlands</a> (Amsterdam), February 23-24, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD France</a> (Paris), March 7, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Los Angeles</a>, March 9-10, 2023</p> </li> <li dir="ltr"> <p dir="ltr"><a href=";utm_medium=email&amp;_hsenc=p2ANqtz-9wNbNjMCpEhGeIqVMAJmeQpUaPJQKTsAIzcx3TdROAS_fj-FpLFzDE6yjHFuBJzxpCZ-G0"> KCD Ukraine</a> Virtual Fundraiser, March 16, 2023</p> </li> </ul> </ul> <h2 dir="ltr"> </h2> <h2 dir="ltr">Links from the interview</h2> <p dir="ltr">Emily Fox:</p> <ul> <li dir="ltr"> <p dir="ltr"><a href="">Twitter</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Linkedin</a></p> </li> </ul> <p dir="ltr"><a href=";list=PLj6h78yzYM2NQ-Zi_k5qVmZyxSmLBzM6V"> Cloud Native Security Con Youtube Playlist</a></p> <p dir="ltr"><a href="">How to Secure Your Supply Chain at Scale - Hemil Kadakia & Yonghe Zhao, Yahoo</a></p> <p dir="ltr"><a href="">eBPF</a></p> <p dir="ltr"><a href="">CIA Triad</a></p> <p dir="ltr"><a href=",before%20the%20next%20phase%20begins."> Waterfall development</a></p> <p dir="ltr"><a href=""> podcast</a></p> <p dir="ltr"><a href="">Rory McCune on twitter</a></p> <p dir="ltr"><a href=""> Software Supply Chain Security</a></p> <p dir="ltr"><a href="">Emily Fox on SBOM</a></p> <p dir="ltr"><a href="">Emily Fox on SDLC</a></p> <p dir="ltr"><a href=""> Shift Left Security: Best Practices for Getting Started</a></p> <p dir="ltr"><a href="">Episode 196 with Benjamin Elder</a></p> <p dir="ltr">CNSC 2023 seattle guests</p> <ul> <li dir="ltr"> <p dir="ltr"><a href="">David Wolf</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Eric Knauer</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Liz Rice</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Mitch Connors  </a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Josh Knarr</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Nick Young</a></p> </li> <li dir="ltr"> <p dir="ltr"><a href="">Taylor Dolezal</a></p> </li> </ul> <p dir="ltr"><a href=";list=PLj6h78yzYM2NQ-Zi_k5qVmZyxSmLBzM6V&amp;index=25"> Frederick Kautz on SPIFFE/SPIRE</a></p> <p dir="ltr"><a href="">Chris Aniszczyk's Blog</a></p> <p dir="ltr"><a href="">The Falco Project</a></p> <p dir="ltr"><a href="">Cilium Tetragon</a></p> <p dir="ltr"><a href="">Pixie</a></p> <p dir="ltr"><a href="">Aviatrix</a></p> <p dir="ltr"><a href="">Keylime</a></p> <p dir="ltr"><a href="">Google Anthos</a></p> <p dir="ltr"><a href=";list=PLj6h78yzYM2NQ-Zi_k5qVmZyxSmLBzM6V&amp;index=38"> Beyond Cluster-Admin: Getting Started with Kubernetes Users and Permissions - Tiffany Jernigan</a></p> <p dir="ltr"><a href="">Standardization & Security - A Perfect Match - Ravi Devineni & Vinny Carpenter, Northwestern Mutual</a></p> <p dir="ltr"><a href="">CSI Container: Can You DFIR It? - Alberto Pellitteri & Stefano Chierici, Sysdig</a></p> <p dir="ltr"><strong> </strong></p> <h2 dir="ltr">Links from the post-interview chat</h2> <p dir="ltr"><a href=""> Cloud Native Security Con Eu 2023</a></p> <p dir="ltr"><a href="">CNCF TOC</a></p>