Name: How to Overcome Common Kubernetes Security Challenges
Start: 2023-11-23T05:30:00Z
End: 2023-11-23T05:30:24.000Z
Location: BrightTALK
Rating: 0

Certificate Lifecycle Management and Network Orchestration

AppViewX is the low-code automation platform that assists global enterprises with PKI certificate management and network infrastructure automation. By focussing on maximizing network security while minimizing the manual effort expended by IT teams, AppViewX has helped over 100 organizations realize lower outages, high visibility into PKI and network environments, and complete control over certificates, keys, and device configurations.

Effectively, we're making the last mile of network automation universally accessible via a flexible platform that will fit into existing architecture, and work with it to deliver rapid results in line with compliance goals. Our webinars are designed to educate viewers about industry trends, product capabilities, and customer implementations.
Browse through our library below, or learn more about us at appviewx.com

Google recently announced a proposal to reduce the maximum validity period for public TLS certificates from 398 days to 90 days. This is a massive change that all organizations need to be aware of now to start preparing for how to renew all public TLS certificates four times a year.

What is the objective behind these proposed changes? What’s the impact on certificate management and how should organizations prepare?
 
Certificate lifecycle management automation is the only way to keep up with short-lived certificates to ensure your internet applications are available and secure. Start preparing now!

Join Muralidharan Palanisamy, Chief Solutions Officer, AppViewX to learn and understand:

- Google’s proposal to reduce the TLS certificate validity 
- The impact of short-lived certificates and how to prepare
- How to achieve certificate lifecycle automation and crypto-agility at scale with AppViewX CERT+

Crypto-Agility Automation: Prepare Now for Google’s 90-Day TLS Validity Proposal

Despite the many promising opportunities and benefits, there is little doubt that quantum computers with sufficient processing power will eventually break today’s widely used encryption algorithms, like RSA and ECC, with relative ease. Threat actors know this and are harvesting valuable encrypted data with the intent of decrypting it in the quantum future.
  
Given this imperative, it is critical that organizations jumpstart their post-quantum preparation today. As cryptography is foundational to internet security, organizations must prioritize building crypto-agility, to quickly and securely replace or update vulnerable keys and certificates.  

Join Asif Karel, Director of Product Management, in this webinar to explore and understand: 

- The impact of quantum computing on cybersecurity 
- Why crypto-agility is critical to defending against quantum threats 
- Key steps to build crypto-agility  
- The benefits of being crypto agile today   
- How AppViewX CERT+ Enables Crypto-agility at Scale

Crypto-Agility and Preparing Now for Post-Quantum Cryptography

Kubernetes is a highly complex environment to secure and native security controls offered by Kubernetes and other open-source solutions often fall short. 

PKI-based TLS certificates are highly-recommended for Kubernetes security. With identities, authentication, and encryption - TLS certificates offer an effective way of securing multiple layers in Kubernetes, encompassing the Ingress traffic, Service Mesh and pod-to-pod communications, and Kubernetes infrastructure components. 

However, managing a high-volume of short-lived TLS certificates in Kubernetes is not easy. Issuing certificates at DevOps speed while ensuring certificates are valid, secure, and compliant, can become extremely daunting for security teams. 

The key to navigating these challenges and bringing security up to speed with DevOps lies in simplifying certificate lifecycle management for Kubernetes. 

Join our webinar with, Harshana Morthy, Lead Principal Solutions Architect, AppViewX for a deeper dive on: 

- Fortifying Kubernetes security with PKI and TLS/mTLS certificates 
- The challenges of managing certificates across Kubernetes environments 
- How to simplify and modernize Certificate Lifecycle Management to harden Kubernetes security and enable DevOps speed and agility

Simplifying Certificate Lifecycle Management for Kubernetes Environments

AWS- Manthan Raval, Senior Solution Architect at Amazon Web Services, discusses the concept of zero trust and its implementation in this presentation. Manthan provides examples of how AWS incorporates zero trust principles, including micro-segmentation, authorization simplification, and streamlined access to internal applications. Manthan emphasizes that zero trust is an ongoing journey, urging organizations to prioritize security based on use cases and work towards a comprehensive, identity-centric security strategy.

Journey to Zero-Trust at scale: An AWS perspective

Deploying Kubernetes effectively requires a practiced hand that understands the security and compliance nuances, including vulnerability analysis on code, multifactor authentication, simultaneous handling of multiple stateless configuration requests, and many more considerations.

Luckily, our panel of experts is equipped to assist you with this very topic. 

Ganesh Janakiraman, Head of Cloud Platform Engineering at Broadcom, joins Ravishankar Chamarajnagar, Chief Product Officer at AppViewX, in this panel discussion to shed light on how to overcome the security challenges in Kubernetes environments and the importance of TLS certificates. 

Tune in to discover how to tackle your own pressing K8s security challenges, as well as hear how AppViewX is helping Broadcom provide visibility, automation, and control of certificates in their Kubernetes environment.

How to Overcome Common Kubernetes Security Challenges

Google's imminent shift to 90-day public TLS certificates is a reality that organizations can no longer ignore. Soon, PKI teams will be under tremendous stress to manage and renew short-lived TLS certificates for their most critical applications and services.

The looming challenge that needs urgent attention is certificate lifecycle automation. Handling the renewal and re-provisioning of certificates at a minimum of four times a year can be a formidable challenge for organizations relying on ad-hoc and manual processes for certificate lifecycle management.

The time to begin preparing for this disruptive change is now. Choosing the right certificate lifecycle automation strategy enables you to simplify certificate renewals and effectively manage 90-day certificates at scale.

Join Asif Karel, Director of Product Management at AppViewX, in our upcoming webinar to discuss and understand:

● The key aspects of Google's 90-Day TLS Certificate Proposal
● The impact of Google’s Proposal on certificate lifecycle management
● Why automation is the essential solution for certificate lifecycle management challenges
● Effective automation strategies you must know to tackle the problem of frequent renewals and successfully manage 90-day TLS certificates at scale

Automation Strategies for Google’s 90-Day TLS Certificate Proposal

The importance of code signing to ensure the integrity and authenticity of software, securing the software supply chain, and extending trust to end users cannot be overstated. Yet, many organizations continue to practice code signing with ad-hoc processes and mismanaged private keys, exposing themselves and their software to supply chain attacks. 

How do you mitigate this risk? How do you ensure your code signing practices are efficient, reliable, and secure? 

Join us for an insightful webinar featuring Ganesh Gopalan, Vice President of Product Management at AppViewX, as he shares practical strategies for modernizing code signing processes to tackle DevOps challenges and strengthen the overall software supply chain.

Here’s what you’ll learn:
● The power of secure code signing in modern software supply chains
● How to meet the new CA/Browser Forum code signing requirements
● The strategies to integrate code signing into the DevOps pipeline
● How to give security teams better visibility and control over code signing

How to Safeguard Your Software Supply Chain with Secure Code Signing

Zero-Trust is not a final destination, it’s an ongoing journey. It requires a fundamental shift in how organizations approach security in today’s dynamic threat landscape.

Tune in to this webinar as Manthan Raval, Senior Solution Architect at Amazon Web Services, discusses the essential elements of Zero-Trust implementation, highlighting key examples of how AWS has incorporated micro-segmentation, authorization simplification, and streamlined access to internal applications.

Discover in this webinar:
• The fundamentals of Zero-Trust security models at scale
• How AWS incorporates Zero-Trust principles to protect critical assets
• Practical examples of micro-segmentation and simplified authorization processes
• And more.

Zero-Trust at Scale: The AWS Perspective and Principles You Need To Know

As the digital landscape evolves, the integration of machine identities alongside human identities becomes imperative to establish a zero-trust future for your organization.

Join Geoff Cairns, Principal Analyst at Forrester Research, as he dives into the critical shift of zero-trust strategies towards a robust identity-first security approach, and how organizations can seamlessly blend human and machine identity management while minimizing risk.

Tune in to this webinar to find out how an integrated, human-machine identity security approach has become a game-changer for traditional zero-trust strategies.

Zero-Trust, Not Zero People: Building a Human-Machine Identity Approach

The obligation to manage and quickly renew millions of certificates creates a perfect storm for businesses with limited internal resources and personnel. After all, how can you possibly manage the certificate lifecycle at this scale, coupled with the difficulty of recruiting in cryptography? 

Our panel session focuses on this central issue, moderated by Christian Simko, Vice President of Product Marketing at AppViewX, and including two AppViewX customers: Guruprasad Ramamoorthy, VP and Global Head of Infrastructure and Network Services at S&P Global, and Thierry Marier-Bienvenue, Director of Cybersecurity Evolution at Desjardin. 

Access the session as these experts delve into the critical aspects of certificate lifecycle management automation, with a focus on the challenges faced and the benefits obtained through automation. 

We'll also explore the integration of certificate management into an identity-first security strategy, discuss Google's 90-day TLS validity proposal, and address the preparations needed for post-quantum cryptography, emphasizing the importance of crypto-agility in security efforts.

Certificate Lifecycle Management Automation Benefits for Crypto-Agility

AVX Session - Christian Simko, Vice President of Product Marketing at AppViewX, will be leading this session, joined by our Chief Product Officer, Ravishankar Chamarajnagar , who will introduce AppViewX's latest product lineup, including KUBE+, SIGN+, and SSH+, addressing critical challenges in the field of certificate and key management. He also discusses the importance of crypto-agility in the ever-changing landscape of cryptography, with Google's 90-day TLS proposal and the impending post-quantum cryptography era. Organizations should start preparing for shorter TLS certificate lifespans today and get ready for post-quantum cryptography.

AppViewX Product Q&A with Ravi Chamarajnagar

Securing and validating the legitimacy of life-saving medical devices is perhaps one of the most crucial applications of effective device security. Moreover, integrating the use of Public Key Infrastructure (PKI) into this strategy allows one to:
• Comply with regulatory agencies’ Internet of Medical Things (IoMT) compliance standards
• Mitigate the risk of counterfeited devices
• And improve trust in patient data.  

In this talk, Xiaomin Chen, PKI and Cybersecurity SME at Dexcom, addresses the growing problem of attacks on IoMT devices by describing how to implement a robust device security solution. 

Watch this session to explore the concept of establishing an IoMT Root of Trust and immutable device identity, as the FDA and other government organizations worldwide advocate for the use of PKI to enhance IoMT security.

5 Ways PKI Prevents Burgeoning Medical Device Security Attacks

One of the significant policy changes through which Google intends to improve internet security is to reduce the maximum validity period for public TLS certificates from 398 days to 90 days. What does this mean for your business? Simply put, more frequent certificate renewals; public TLS certificates will require renewals four times a year.

The challenge begins here, as many companies are still managing TLS certificates manually, which grows increasingly difficult at scale. 

Tune into this webinar to hear from Christopher M. Steffen, Vice President of Research at ENTERPRISE MANAGEMENT ASSOCIATES® (EMA™), and Murali Palanisamy, Chief Solutions Officer at AppViewX, who shed light on the impact of Google's proposal to reduce TLS certificate validity on business security and compliance.

SSL/TLS Certificate Security Management & Expiration Challenges

Web Security

Web Application Security

Encryption

Network Security

Digital Identity

Containers

Container Security

Kubernetes

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Overcome Common Kubernetes Security Challenges

Presented by

About this talk

More from this channel