Tracing Vulnerabilities with SBOMs and Cilium in Hybrid Applications - Esra Siegert & Sebastian Graf

Описание: In today's landscape, supply chain security is paramount. The cloud-native ecosystem offers tools to tackle vulnerabilities, but our approach goes further. We've developed a framework that traces network traffic between services and enriches these traces with SBOM information, extending insights to static legacy infrastructure. This provides a comprehensive view of entire architectures, from Kubernetes pods to legacy applications. Our architecture handles security incidents from emerging vulnerabilities and offers transparency across both legacy and cloud environments. With Cilium's Network Policies, platform owners can automatically manage compromised network traffic. Additionally, found vulnerabilities become directly visible in monitoring appliances to respond to security threats effectively.

About the speakers:
Sebastian Graf is Professor for Cloud Infrastructures at the University for Applied Sciences and Arts Northwestern Switzerland where he focusses on everything related to SRE, DevOps, Cloud Nativeness and Infrastructures as sourcecode.
Before being a professor, he worked in both, startups as well as large organizations in different roles like Software Developer, Software Architect, DevOps Engineer, Product Owner as well as Product Manager.

Esra Siegert is a Cloud Native System Engineer and Kubestronaut.