Blog
Building an eBPF based Open-Source observability platform
In today's world maintaining Observability and understanding what is happening inside your system in near real-time is a challenging task. The complexity arises due to the distributed nature of Cloud Infrastructure and especially Microservice based Software that has multiple components that need to communicate between each other. Keeping track of this communication and the processes involved is time consuming to track on its own.
Using the extended Berkeley Packet Filter (eBPF) technology helps transform Observability itself by allowing deep, safe, and efficient instrumentation of running systems.
Trust Nothing, Secure Everything: How to Build Zero Trust on AWS
Legacy defences just aren't cutting it anymore. According to the 2024 IBM Cost of a Data Breach Report, the global average cost of a breach has skyrocketed to $4.88 million, marking a 10% jump over last year and the highest figure on record. Even more alarming, 1 in 3 breaches involved so-called "shadow data" information that organisations didn't even know they had. The good news? By using AI and automation in security, organisations saved an average of $2.22 million per breach.
Image Scanning in Action: Securing Your Software Supply Chain
Understanding and managing vulnerabilities in modern software supply chains is more critical than ever. SBOM scanning provides transparency and helps mitigate risks effectively. In this article, we explore what SBOM scanning is, its real-world benefits, and how to integrate it into your software development lifecycle. You'll also find actionable best practices and a real-world example of its use within a microservice architecture.
Deploy an infrastructure stack on AWS that provides certificate-based encryption, based on Cert-Manager, Kubernetes Gateway API, and External-DNS.
Establishing a secure connection between a client and a webserver is essential to protect a user session against access or manipulation by third parties. If a web application should be reachable via the public internet, it needs to provide a certificate, that is from a trusted authority so most web browsers should trust the server behind the web address by default. A free solution represents the combination of the tool “cert-manger” and the nonprofit Certificate Authority “Let’s Encrypt” which provides an automatic way to request and deploy valid certificates into applications.
KubeCon + CloudNativeCon NA 2024 Recap
KubeCon + CloudNativeCon NA in Salt Lake City was a hot pot. In addition to many projects graduating within the Cloud Native Computing Foundation, the end users in the US often show how far you can be already in technology adoption if you are just a little bit more brave and curious. Also, the event was a strong statement that Platform Engineering is the foundation for GenAI.
Navigating the Future of Cloud Cost Management Tools: A recap of the Forrester Wave ™ report on FinOps tooling
