Blog
Trust Nothing, Secure Everything: How to Build Zero Trust on AWS
Legacy defences just aren't cutting it anymore. According to the 2024 IBM Cost of a Data Breach Report, the global average cost of a breach has skyrocketed to $4.88 million, marking a 10% jump over last year and the highest figure on record. Even more alarming, 1 in 3 breaches involved so-called "shadow data" information that organisations didn't even know they had. The good news? By using AI and automation in security, organisations saved an average of $2.22 million per breach.
Image Scanning in Action: Securing Your Software Supply Chain
Understanding and managing vulnerabilities in modern software supply chains is more critical than ever. SBOM scanning provides transparency and helps mitigate risks effectively. In this article, we explore what SBOM scanning is, its real-world benefits, and how to integrate it into your software development lifecycle. You'll also find actionable best practices and a real-world example of its use within a microservice architecture.
Deploy an infrastructure stack on AWS that provides certificate-based encryption, based on Cert-Manager, Kubernetes Gateway API, and External-DNS.
Establishing a secure connection between a client and a webserver is essential to protect a user session against access or manipulation by third parties. If a web application should be reachable via the public internet, it needs to provide a certificate, that is from a trusted authority so most web browsers should trust the server behind the web address by default. A free solution represents the combination of the tool “cert-manger” and the nonprofit Certificate Authority “Let’s Encrypt” which provides an automatic way to request and deploy valid certificates into applications.
KubeCon + CloudNativeCon NA 2024 Recap
KubeCon + CloudNativeCon NA in Salt Lake City was a hot pot. In addition to many projects graduating within the Cloud Native Computing Foundation, the end users in the US often show how far you can be already in technology adoption if you are just a little bit more brave and curious. The event was a strong statement against the naysayers.
Internal Developer Platforms: The Strategic Advantage for Modern Businesses
In today's fast-paced digital landscape, software development teams are constantly pressured to deliver innovative solutions rapidly. Many organizations are turning to Internal Developer Platforms (IDPs) to streamline development processes and enhance developer productivity. Platform engineering is at the heart of IDPs, a crucial discipline in enabling these platforms. This article will explore how platform engineering enables IDPs, what exactly an IDP is, and why it is so valuable.
Authentication and authorization with OIDC and Azure AD on ArgoCD
Implement SSO on ArgoCD via OIDC and AzureAD
