This presentation was recorded at GOTO Copenhagen 2021. #GOTOcon #GOTOcph Frederik Mogensen - Software Engineer at a Startup ABSTRACT Handling health care info for patients requires a high level of security and confidentiality. Running a Cloud Native platform opens a lot of possibilities, but also a lot of dangerous pitfalls. In this talk we will explore different problem areas, and some of the best practices for handling these. We will look at Open Source tools for automatic detection, enforcing security policies and security reporting for auditing. We will also talk about the easy options, the full package, and the managed package [...] TIMECODES 00:00 Intro 00:25 Cloud native definition 01:01 Common Danish telemedicine platform 03:18 The 4 C's of cloud native security 06:21 Demo: cloud provider security 10:25 Kubernetes infrastructure 11:35 Demo: k8s infrastructure 14:43 Cluster 17:30 Demo: cluster 21:18 Runtime cluster security 25:11 Intruder detection 25:33 Demo: intruder detection
Hide player controls
Hide resume playing