Security

Ensuring Kubernetes Security: A Collaborative Journey for Developers and Operators

by Alexandre Vazquez
2023-06-022024-09-29

Ensuring robust Kubernetes security is a shared responsibility that demands collaboration between developers and operators. By addressing vulnerabilities in container images, restricting additional privileges, and restricting visibility between components, organizations can establish a secure Kubernetes environment. Developers play a crucial role in utilizing vulnerability scans, minimizing components, and implementing authentication measures, while operators enforce policies, perform vulnerability scans, and manage network visibility. Together, they fortify the container ecosystem, protecting applications and critical business assets from potential security breaches. Discover the collaborative journey to Kubernetes security and unlock the full potential of this powerful orchestration platform.

Secure Your Services with Istio: A Step-by-Step Guide to Setting up Istio TLS Connections

by Alexandre Vazquez
2022-12-242024-09-29

Looking to secure the communication between services in your Kubernetes cluster with Istio? In this article, we’ll provide a step-by-step guide on how to establish a Transport Layer Security (TLS) connection with Istio. We’ll cover how to expose TLS on the Istio ingress gateway, consume SSL from Istio, and enforce mutual TLS (mTLS) between different services in the cluster. By following the instructions in this guide, you can ensure secure communication and protect your applications from cyber threats. With Istio, you can easily centralize and externalize security aspects, allowing your applications to focus on their business logic and reducing the workload on your development team.

DevSecOps vs DevOps: Fundamentals and Differences Answering 3 Questions

by Alexandre Vazquez
2022-10-102022-10-09

DevOps vs DevSecOps: Fundamentals about DevSecOps understanding what it is, why it is crucial and how different is vs DevOps

Trivy: Get To Scan Docker Local Images with Success

by Alexandre Vazquez
2022-10-032022-09-14

Scan Docker images or, to be more honest, scan your container images is becoming one of the everyday tasks to be done as part of… Read More »Trivy: Get To Scan Docker Local Images with Success

How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes

by Alexandre Vazquez
2022-09-122022-10-03

Introduction This article will cover how to inject secrets in Pods using Hashicorp Vault. In previous articles, we covered how to install Hashicorp Vault in… Read More »How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes

TIBCO BW Hashicorp Vault Configuration: More Powerful and Better Secured in 3 Steps

by Alexandre Vazquez
2022-09-012022-10-03

Introduction This article aims to show the TIBCO BW Hashicorp Vault Configuration to integrate your TIBCO BW application with the secrets stored in Hashicorp Vault,… Read More »TIBCO BW Hashicorp Vault Configuration: More Powerful and Better Secured in 3 Steps

Create Secrets in Hashicorp Vault Using 2 Easy Ways

by Alexandre Vazquez
2022-08-292022-10-05

Introduction Create secrets in Hashicorp Vault is one of the most important and relevant things you can do once you have installed Hashicorp Vault on… Read More »Create Secrets in Hashicorp Vault Using 2 Easy Ways

Hashicorp Vault Installation on Kubernetes: Quick and Simple in 3 Easy Steps

by Alexandre Vazquez
2022-08-222022-08-17

Introduction In this article, we are going to cover the Hashicorp Vault Installation on Kubernetes. Hashicorp Vault has become one of the industry standards when… Read More »Hashicorp Vault Installation on Kubernetes: Quick and Simple in 3 Easy Steps

Grafana and LDAP: Increase Security in Less Than 5 minutes

by Alexandre Vazquez
2022-06-202022-06-26

This article will cover how to quickly integrate Grafana and LDAP server to increase the security of your application

Improving Development Security With These Open Source Tools

by Alexandre Vazquez
2021-03-312022-09-15

Development Security is one of the big topics of today’s development practice. All the improvements that we got following the DevOps practices have generated many issues and concerns from the security perspective.