• Open Horizon
• KubeArmor
• The biggest hurdle – Security
• KubeArmor x Open Horizon
• Observability: KubeArmor can provide container-aware observability information about the operations happening:
• Enforcement: KubeArmor can be used to apply security postures at the kernel level (using LSMs like AppArmor, BPF-LSM). It can protect both the host and workloads running on it by enforcing either some predefined security policies or automatically generated least permissive security policies (using Discovery Engine).
• USE CASES
• Cryptojacking/Malware protection
• Hardware Damage and Power Consumption
• What can Kubearmor do?
• Edge application sandboxing (Zero Trust)
• Why Zero Trust?
• What can Kubearmor do?
• File Integrity Monitoring/Protection
• Attack scenario
• What can Kubearmor do?
• noexec from /tmp/#
• Attack scenario:
• What can Kubearmor do?