cloud native security Archives

runtime, visibility, Chainguard, threat, cloud-native security, Venafi, security, sigstore, KubeCon, cloud-native, security, secure, Rubrik, Kubernetes, Cloud-Native Security Best Practices

Runtime Visibility & AI-powered Security in Cloud-Native Environments

Kubernetes and cloud-native platforms have transformed software delivery — but also redefined the attack surface. As threats shift to runtime, visibility and real-time response have become the new security frontline. AI-driven anomaly ...

security, ai, tools, security, kubernetes, PKI, security, networking, AI, Kubernetes, AppViewX Securing containers

LLMs & Kubernetes Configuration: Automating Hardening, Drift Detection and Policy Enforcement

Kubernetes misconfigurations remain the top security risk. AI copilots promise automated hardening, drift detection, and policy enforcement to make clusters safer ...

service mesh, Buoyant, Istio Solo.io Buoyant Linkerd service mesh

Service Mesh Evolution: Ambient Mode, Gateways & The Return of Simpler Architectures

Service mesh is evolving beyond sidecars. Ambient mode and Gateway APIs deliver security, observability, and traffic control with less overhead. Teams benefit from leaner, more flexible architectures ...

Alan Shimel | October 1, 2025 | Alan, ambient mode, cloud native security, container networking, devops, gateway API, Istio, Kubernetes networking, microservices, observability, OpenShift Service Mesh, platform engineering, service mesh, sidecar alternatives, SRE, traffic management, waypoints, ztunnel

Kubernetes, observability, tracing, kubernetes observability, Grafana labs, kubernetes, observe, tool, Datadog, data, observability, kubernetes Docker Granulate observability

Bridging Observability & Security in Kubernetes: Beyond Just Metrics

Kubernetes has expanded agility but also the attack surface. Alan argues that observability and security can no longer live in silos — metrics, logs, and traces already hold critical security signals, while ...

CNCF, Docker Partnership Streamlines Container Security, Operations

CNCF and Docker partner to boost open source projects with security, scalability and trusted container delivery through Docker’s DSOS program ...

Nathan Eddy | September 25, 2025 | cloud native security, CNCF Docker partnership, CNCF projects Kubernetes Prometheus Envoy OpenTelemetry, container image provenance, container registry scalability, container security, DevSecOps open source, Docker Hub trusted images, Docker Hub usage insights, Docker Scout vulnerability scanning, Docker Sponsored Open Source, DSOS program, open source maintainers, open source software supply chain security

CNCF, Kubernetes, SUSECON, SUSE, cloud-native, stack, CNCF, cert manager, guidance, patent, cloud native, CNCF Advances Linkerd Service Mesh cloud-native

CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution

The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...

Alan Shimel | September 24, 2025 | cloud native security, CNCF Docker partnership, container image provenance, Docker Hub namespaces, Kubernetes trust, OSS Sponsored Program, platform engineering security, SBOM generation, signed container images, software supply chain

WASM, edge, frontier, cloud native, cloud native, KubeCon, CloudNativeNow2025

The Cloud-Native Frontier is at the Edge

The future of cloud-native is hybrid and edge. Learn how WebAssembly (WASM) complements containers to power next-gen workloads with speed, security and agility ...

Alan Shimel | September 23, 2025 | cloud native, cloud native security, CNCF WASM, distributed workloads, edge computing, hybrid cloud, hybrid cloud strategy, Kubernetes at the edge, WASM vs containers, WebAssembly WASM

visibility, runtime, eBPF Packet-Level Visibility to Workloads

Runtime Visibility: The Missing Layer in Cloud-Native Security

Cloud-native security can’t rely on old perimeter defenses. With workloads spinning up in seconds, runtime visibility is now the missing layer leaders must prioritize. Learn why observability is security, how tools like ...

Alan Shimel | September 16, 2025 | cloud native security, cloud workload protection, CNAPP, container runtime monitoring, DevSecOps, eBPF observability, Kubernetes security, real-time anomaly detection, runtime visibility, security observability

devsecops, supply chain, Kubernetes, practices, DevSecOps, JFrog, DevSecOps, Snyk Cerbos DevSecOps authorization incident Deepfence misconfigured Kubernetes security

AI Security in the Cloud-Native DevSecOps Pipeline

As AI reshapes DevSecOps, speed and efficiency collide with new, often hidden, security risks. From machine-generated code flaws to model supply chain threats, the future of cloud-native security depends on blending AI’s ...

Saqib Jan | August 13, 2025 | AI DevSecOps, AI security, cloud native security

Curved Kubernetes: Microsoft Workload Orchestration in Azure Arc

Microsoft has confirmed the release and general availability of “workload orchestration” as a new service in Azure Arc, the company’s extension mechanism that enables Azure cloud management capabilities to work outside Azure ...

Adrian Bridgwater | July 9, 2025 | CI/CD, cloud native security, cloud-native applications, kubernetes, microservices, Microsoft Arc