By Manish SampatOct 2, 2019Cybersecurity, Firewall
Researchers at Netflix and Google recently reported a vulnerability in the HTTP/2 protocol that enables adversaries to execute a DOS attack by legitimate use of the protocol. These types of attacks are very difficult to detect and mitigate because the traffic is valid...
By Shaun CramptonJun 4, 2019Calico, Cybersecurity, Networking
In this article, we’ll explore Calico’s denial-of-service (DoS) mitigation features, including XDP-optimisation support introduced in Calico v3.7. Using Calico Policy for DoS mitigation During a DoS attack, a cluster can receive massive numbers of...
By Christopher LiljenstolpeJul 23, 2018Blog, Cybersecurity, Kubernetes, Security, Zerotrust
For almost as long as we have networked computers, we have used the network location or address as their primary identity. Using network location might have made sense when there was a 1:1 mapping between a computer and the thing it was acting for (user, application,...
By Vince LauJul 20, 2018AWS, Blog, Cybersecurity, DevOps, Eks, Kubernetes, Microsegmentation, Zerotrust
Modern application architectures have become mainstream as enterprises experience the benefits of rapid application delivery. Many leverage Amazon EKS as an easy path to Kubernetes. Amazon EKS removes the pain of managing cluster operations and administration tasks;...
By Christopher LiljenstolpeJul 13, 2018Cloud Security, Compliance, Containers, Cybersecurity, Microservices
This is the fourth (and final) part of a four-part series discussing the microservice revolution, and how it impacts the InfoSec community. This series is a not meant to be a definitive guide, but more of an overview that initiates your Microservice journey. The first...
By Christopher LiljenstolpeJun 4, 2018Cloud Security, Compliance, Cybersecurity, Microservices, Security
This is the third part of a four-part series discussing the microservice revolution, and how it impacts the InfoSec community. This is a not meant to be a definitive guide, but more of an overview that will start you on your own Microservice journey. The first two...
