Observability with Auto Discovered Policies
Observability with Auto Discovered Policies | Ankur Kothiwal @Open Observability Day
It is common to analyze network and system logs for generating security policies, but the manual process is inefficient and has a high chance of missing important logs.
Discovery Engine is an open-source policy recommendation system, which can act as a plug-in for K8s environments that discovers network and system policies based on the logs collected from the various Container Network Interfaces (CNIs).
The engine leverages aggregation techniques to reduce the number of policies discovered, uses pod labels for rules specification, and handles the discovery across multiple dimensions (networks, systems).
This talk will help in providing an insight into how the auto policy discovery tool works, its use-cases, and the requirement for an automated runtime policy generating engine in the changing cloud-security environment.
β³Timestamps
00:00:15 Understanding Observability
00:00:55 The problem
00:02:44 The solution: Auto-Discovered Policies
00:03:36 Zero Trust in DevSecOps Model
00:04:40 Discovery Engine
00:05:30 The summary
π» Learn more about AccuKnox
Website: https://www.accuknox.com/
Help Docs: https://help.accuknox.com/
Blogs: https://www.accuknox.com/blog
ββββββββββββββββββ
Get help with AccuKnox queries
Email: [email protected]
Slack: https://kubearmor.slack.com/
Policy Templates: https://github.com/kubearmor/policy-templates
ββββββββββββββββββ
π¬ Follow AccuKnox on social media
Twitter: https://twitter.com/accuknox
LinkedIn: https://www.linkedin.com/company/accuknox/
ββββββββββββββββββ
β
Subscribe to Accuknoxβs YouTube channel