Lightning Talk: Bridging Silos: Real‑Time DevSecOps Telemetry for Container Def... Balasaheb Salunke
Don't miss out! Join us at our next Flagship Conference: KubeCon + CloudNativeCon India in Hyderabad (August 6-7), and KubeCon + CloudNativeCon North America in Atlanta (November 10-13). Connect with our current graduated, incubating, and sandbox projects as the community gathers to further the education and advancement of cloud native computing. Learn more at https://kubecon.io
Lightning Talk: Bridging Silos: Real‑Time DevSecOps Telemetry for Container Defense? - Balasaheb Salunke, Qualys
Why are security alerts and observability telemetry still treated as separate worlds? Cloud‑native teams collect plenty of data Prometheus metrics, Loki logs, Jaeger traces, Falco or Tetragon alerts but attackers still slip through because that telemetry is siloed. This talk dissects real world incidents where runtime security signals lacked application context, and vice‑versa, extending mean time to detect not by hours but by days. It then demonstrates an open‑source pipeline that enriches eBPF security events with OpenTelemetry context, routes everything through fluent collectors, and visualises a single incident timeline. The result are fascinating to see, faster detection, richer forensics, and a practical DevSecOps workflow any team can easily adopt.
Видео Lightning Talk: Bridging Silos: Real‑Time DevSecOps Telemetry for Container Def... Balasaheb Salunke канала CNCF [Cloud Native Computing Foundation]
Lightning Talk: Bridging Silos: Real‑Time DevSecOps Telemetry for Container Defense? - Balasaheb Salunke, Qualys
Why are security alerts and observability telemetry still treated as separate worlds? Cloud‑native teams collect plenty of data Prometheus metrics, Loki logs, Jaeger traces, Falco or Tetragon alerts but attackers still slip through because that telemetry is siloed. This talk dissects real world incidents where runtime security signals lacked application context, and vice‑versa, extending mean time to detect not by hours but by days. It then demonstrates an open‑source pipeline that enriches eBPF security events with OpenTelemetry context, routes everything through fluent collectors, and visualises a single incident timeline. The result are fascinating to see, faster detection, richer forensics, and a practical DevSecOps workflow any team can easily adopt.
Видео Lightning Talk: Bridging Silos: Real‑Time DevSecOps Telemetry for Container Def... Balasaheb Salunke канала CNCF [Cloud Native Computing Foundation]
Комментарии отсутствуют
Информация о видео
1 июля 2025 г. 22:34:31
00:09:19
Другие видео канала
