by John Armstrong | Mar 24, 2020 | Blog, Calico Enterprise, Compliance, Cybersecurity, Fortinet, Kubernetes
What Problems are We Solving? Container use continues to grow, and Kubernetes is the most widely adopted container orchestration system, managing nearly half of all container deployments.1 Successful integration of container services within the enterprise depends...
by Manish Sampat | Oct 2, 2019 | Cybersecurity, Firewall
Researchers at Netflix and Google recently reported a vulnerability in the HTTP/2 protocol that enables adversaries to execute a DOS attack by legitimate use of the protocol. These types of attacks are very difficult to detect and mitigate because the traffic is valid...
by Shaun Crampton | Jun 4, 2019 | Calico, Cybersecurity, Networking
In this article, we’ll explore Calico’s denial-of-service (DoS) mitigation features, including XDP-optimisation support introduced in Calico v3.7. Using Calico Policy for DoS mitigation During a DoS attack, a cluster can receive massive numbers of...
by Christopher Liljenstolpe | Jul 23, 2018 | Blog, Cybersecurity, Kubernetes, Security, Zerotrust
For almost as long as we have networked computers, we have used the network location or address as their primary identity. Using network location might have made sense when there was a 1:1 mapping between a computer and the thing it was acting for (user, application,...
by Vince Lau | Jul 20, 2018 | AWS, Blog, Cybersecurity, DevOps, Eks, Kubernetes, Microsegmentation, Zerotrust
Modern application architectures have become mainstream as enterprises experience the benefits of rapid application delivery. Many leverage Amazon EKS as an easy path to Kubernetes. Amazon EKS removes the pain of managing cluster operations and administration tasks;...
by Christopher Liljenstolpe | Jul 13, 2018 | Cloud Security, Compliance, Containers, Cybersecurity, Microservices
This is the fourth (and final) part of a four-part series discussing the microservice revolution, and how it impacts the InfoSec community. This series is a not meant to be a definitive guide, but more of an overview that initiates your Microservice journey. The first...
