Posted on

Strengthen Enterprise Security Through Network Isolation Approach

IT security managers are increasingly waking up to realize that the sheer quantity of regular generated malicious and non-malicious software programmers requires them to be on their toes, searching for effective countermeasures. They are largely moving to network segmentation/isolation to ensure security, sensing the failure of traditional security approaches.

Corporate IT security managers are rapidly waking up to realize that the sheer volume of malicious and non-malicious software programs that are generated daily requires them to be on their toes, looking for effective countermeasures. Sensing the failure of conventional security approaches, they are largely shifting to network segmentation/ isolation for ensuring security.

Posted on

Kubernetes Auditing

Auditing is an essential administrative input to understand the way a system is affected or being used. An audit trail is a log of the sequence of chronological events that occurred on a system. It helps administrators understand what event occurred, when did it take place and the trigger or the source of the event. It is also a compliance or legal requirement for many businesses and so an important part of IT systems. In this tutorial, we will look at how to do auditing in Kubernetes.

Introduction

A simple example of an audit log in the context of Kubernetes would be read as

Posted on

5 Best Security Practices for Kubernetes and Oracle Kubernetes Engine

In this article, readers will learn about each best practice in Open Source Kubernetes as well as Oracle’s Kubernetes managed service (OKE) running on Oracle Cloud Infrastructure (OCI).

Kubernetes has gained rapid traction over the last three years and is being deployed in production by many companies. While in general, Kubernetes does follow the core software security principles, some ownership of security falls on the shoulders of the end users. Just like a shared security responsibility model exists between all cloud providers and the customers, there is a shared security responsibility for managed Kubernetes services being offered by cloud providers. Managed Kubernetes Services Cloud providers like Oracle Cloud Infrastructure Container Engine for Kubernetes (also known as Oracle Kubernetes Engine or OKE), Azure Kubernetes Service (AKS), and others are typically responsible for managing and securing the control plane (API Server, scheduler, etcd, controllers) of the Kubernetes cluster and customers of the managed service are responsible for the securing the data plane (node pools, ingress, networking, service mesh etc).

Posted on

Hibernate Envers: Simple Implementations (Part 1)

Introduction

Auditing is an important part of software applications. Almost every business domain requires an audit log to manage the changes of acquired data. More than that, auditing is also required to keep applications safe from fraudulent and unethical access. Many applications also check the changelog of data for their internal processes. Many Java-based software implement triggers on the database layer for auditing, but Hibernate gives a more convenient way to implement auditing.

Hibernate Envers: Features

Hibernate Envers is a framework for auditing. Though Hibernate is an ORM technology, auditing tasks based on Hibernate entities means changes on the entity is audited and saved on the database. Auditing of all mappings is defined by the JPA specification. Revision of each entity log is saved by Hibernate Envers. Hibernate Envers gives the way to read historical data log. 

Posted on

How to Find the Best DevOps Tools for Your Business

Like other industries, IT needs to be more Agile to keep up with the speed of business today. The need to get software to market faster is causing more companies to bring DevOps into their enterprises. Over the last five years, DevOps adoption has grown from 54% in 2013 to 78% in 2017.¹

As DevOps increases in prevalence, companies are becoming well-versed in the business value of bringing together IT development, operations and QA teams to deliver software faster, at higher quality and with reduced costs and risks. They understand the benefits of automating, standardizing and accelerating provisioning, build, deploy and release tasks across environments.