Styra

Kubernetes Security at RSA: The Time is Now

Feb 25, 2020 By Chris Webber In Styra

The RSA Conference—”Where the World Talks Security”—begins today. It’s a perfect time to take a hard look at security, and to investigate new solutions that help us all stay ahead of attacks and minimize risks. The team from Styra and Open Policy Agent will be there—eager to discuss advances in security for the cloud-native world.

Read Post

Styra

Read more about Kubernetes Security at RSA: The Time is Now

Open Policy Agent in Practice: From Angular to OPA in Chef Automate

Dec 4, 2019 By Styra In Styra

From the Open Policy Agent Summit at KubeCon, Michael Sorens from Chef discusses how OPA provides granular authorization within applications:

View Video

Styra

Read more about Open Policy Agent in Practice: From Angular to OPA in Chef Automate

Open Policy Agent at Scale: How Pinterest Manages Policy Distribution

Dec 4, 2019 By Styra In Styra

From the Open Policy Agent Summit at KubeCon, Jeremy Krach and Will Fu discuss how OPA policies are authored, distributed, and utilized at Pinterest (service mesh, kafka, internal tools). They also cover lessons learned in the process.

View Video

Styra

Read more about Open Policy Agent at Scale: How Pinterest Manages Policy Distribution

TripAdvisor: Building a Testing Framework for Integrating Open Policy Agent into Kubernetes

Dec 4, 2019 By Styra In Styra

From the Open Policy Agent Summit at KubeCon, Luke Massa from TripAdvisor discusses how he leveraged OPA’s API and unit test framework. The example shown is a system in which you write k8s admission policy alongside some mock changes to the cluster, some of which should be accepted and some of which should not be, and then run code that tells you whether your policy matches your expectation.

View Video

Styra

Read more about TripAdvisor: Building a Testing Framework for Integrating Open Policy Agent into Kubernetes

Deploying Open Policy Agent at Atlassian

Dec 4, 2019 By Styra In Styra

From the Open Policy Agent Summit at KubeCon, Chris Stivers and Nicholas Higgins from Atlassian walk through their journey building a global authorization platform with Open Policy Agent and the help of Fluentd, S3, CDN's, Amazon Kinesis, and many more.

View Video

Styra

Read more about Deploying Open Policy Agent at Atlassian

Open Policy Agent for Policy-enabled Kubernetes and CICD

Dec 4, 2019 By Styra In Styra

From the Open Policy Agent Summit at KubeCon, Jiummy Ray from CapitalOne discusses how you can satisfy compliance, governance, and security requirements effectively with OPA.

View Video

Styra

Read more about Open Policy Agent for Policy-enabled Kubernetes and CICD

New Kubernetes PCI DSS Compliance Packs, And More

Nov 18, 2019 By Sumana Annam In Styra

As enterprises adopt cloud-first or cloud-native strategies, Kubernetes is by far the most important strategic consideration. At the same time, for the large subset of these enterprises which take payment from consumers, PCI DSS has never been more critical. More than ever, enterprises have to pay attention to data security (and their commitment to improving security posture) in order to meet compliance requirements. So what has to change to meet compliance in a Kubernetes-based environment?

Read Post

Styra

Read more about New Kubernetes PCI DSS Compliance Packs, And More

Series A Financing to Continue Styra's Vision

Nov 12, 2019 By Bill Mann In Styra

This week, I'm pleased to announce that we closed our $14M Series A financing round. We look forward to partnering with our new investor, Accel, who led the round alongside existing investors, Unusual Ventures and A.Capital. Accel's Eric Wolford will join our board, bringing a wealth of open source experience from Heptio, SysDig and Corelight.

Read Post

Styra

Read more about Series A Financing to Continue Styra's Vision

Minimize Kubernetes Compliance Audit Heartache

Aug 13, 2019 By Chris Webber In Styra

As Kubernetes matures and moves from exploration into production, we on the Styra and Open Policy Agent teams are starting to hear of a new trend. It’s part of any kind of operational lifecycle for many companies and it goes something like this: DevOps: Our Kube environment is performant, secure, and compliant by design! Auditor: K. Walk me through every line of code you typed since time began.

Read Post

Styra

Read more about Minimize Kubernetes Compliance Audit Heartache

Investigate and Correct CVEs with the K8s API

Jun 27, 2019 By Marco Sanvido In Styra

When NIST (https://nvd.nist.go) announces a new CVE (Common Vulnerability and Exposure) that impacts Kubernetes, kube administrators and IT Security teams need to quickly understand the impact of the vulnerability and protect their Kubernetes clusters. Often, no patches are yet available, so in addition to understanding the impact, DevOps teams have to decide whether or not to create a custom fix to mitigate the risk of that CVE without bringing down the entire app or system.

Read Post

Styra

Read more about Investigate and Correct CVEs with the K8s API

Subscribe to Styra

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Styra

Kubernetes Security at RSA: The Time is Now

Open Policy Agent in Practice: From Angular to OPA in Chef Automate

Open Policy Agent at Scale: How Pinterest Manages Policy Distribution

TripAdvisor: Building a Testing Framework for Integrating Open Policy Agent into Kubernetes

Deploying Open Policy Agent at Atlassian

Open Policy Agent for Policy-enabled Kubernetes and CICD

New Kubernetes PCI DSS Compliance Packs, And More

Series A Financing to Continue Styra's Vision

Minimize Kubernetes Compliance Audit Heartache

Investigate and Correct CVEs with the K8s API

Monthly Archive

Follow Us