Photo

Securing K8s: back and forth to RBAC Enforce

Roman Levkin

from Exness (Limassol)

About speaker

IT & ITSec folk who managed to look at the industry from different points of view: the integrator's, the vendor's and the customer's. Mostly on the "blue" side.

About speakers company

The leading multi-asset broker.

Abstracts

specific

The Great and Terrible – Access Control! And spiced up with a dash of YAML! Of course, you've heard about Role-Based Access Control (RBAC) in K8s, and you've probably seen more than one presentation about how it's implemented in Kubernetes API. But I invite you to dive deeper into what "configuring access in K8s" really means in practice:
- reality vs. theory: RBAC scope and limitations;
- other K8s-native controls and 3-party solutions for the rescue;
- access control and platform components: GitOps, monitoring, storage, cloud... you got the idea;
- the role of RBAC in building K8s multi-tenancy.
This is an intermediate-level technical talk, blending storytelling with practical tips and recommendations, aimed at helping you master this not the easiest, but one of the most powerful components of K8s security.

The Program Committee has not yet taken a decision on this talk

other talks of this topic

Photo
Flags of Flexibility - Unlocking Rapid Iteration

Oussama Zaki

Miro

broad
Photo
Operational Excellence in Large-Scale Systems: Ensuring Performance and Stability in High-Load Env

Vamsi Krishna Rao

Salesforce

broad
Photo
How Kubernetes stores encrypted data in etcd, and why KMS v2 matters

Maksim Nabokikh

Palark GmbH

specific
Photo
Reduce Alert Fatigue with AIOps

Birol Yildiz

ilert GmbH

broad
Photo
Knowledge Discovery Efficiency: The FeedHenry Case Study

Benjamin Igna

Stellar Work GmbH

specific
Photo
​​Fine-Tuning Large Language Models with Declarative ML Orchestration

Shivay Lamba

Couchbase

specific
Photo
CRaCing Java Snapshots

Pasha Finkelshteyn

BellSoft

specific
Photo
Safely through the dependency minefield using OWASP Dependency Track

Christoph Menzel

inovex GmbH

specific
Photo
AI as a Tool: Automating Operations Without Reinventing the Wheel

Maarten Raaijmakers

Raynmakers

broad
Photo
Open Source Solutions: Evaluating OpenTelemetry Backend Options

Peter Zaitsev

Percona, Coroot

specific
Photo
The ROI of AI: Making a Business Case for AI-Driven Automation

Maarten Raaijmakers

Raynmakers

broad
Photo
Multi-Layered Defence for Web Applications: Protecting Against DDoS Attacks and Beyond…

Edgar Mikayelyan

Qrator Labs

broad
Photo
Zero-instrumentation observability based on eBPF

Peter Zaitsev

Percona, Coroot

specific
Photo
DevOps done right: RBAC

Daniel Drack

FullStackS GmbH

specific
Photo
How to Measure PromQL/MetricsQL Expression Complexity

Roman Khavronenko

VictoriaMetrics

specific
Photo
Actionable Observability

Lesley Cordero

The New York Times

broad
Photo
Troubleshooting Microservice Architectures

Peter Zaitsev

Percona, Coroot

specific
Photo
An Intro to Kubernetes Hardening

Ayesha Kaleem

MBition GmbH

broad
Photo
How to Build a Docker Engine-like Custom Container without Any Software

Gursimar Singh

DevOps Consultant

specific

Tech Internals Conf

is the largest conference for developers of complex
and highly loaded systems

Participation options

The price is soaring —> the closer the conference is, the more it costs.

The current price of a ticket is —> 460 EUR before April 1st

what I`ll get?

  • Participation in Q&A sessions
  • Videos and slides after the conference
  • Hearty coffee breaks and lunches
  • Access to the exhibition area
  • Afterparty with speakers and participants
for individuals for legal entities

Unlock up to 50%
off your ticket!

Enter your email to see your personalised discount — no commitment to purchase required

Changed your mind?

Please tell us why.

Thank you
for your reply!

Become partner

of the largest conference for developers of complex
and highly loaded systems