Cloud Native Computing Foundation, Chief Operating Officer
June 17th, 2019 | 30 mins 7 secs
The fact that cloud native and container exploits are becoming more attractive targets for attackers as they grow in popularity is obvious. But as of late, some gaping security holes in both platforms have sparked even greater causes for concern.
To wit, a security hole was recently revealed — with a sure-fire fix lacking at the time when this article was posted — that detailed how an attacker can gain root access to Docker container hosts. The vulnerability, similar in scope to an symlink-race attack, a SUSE security researcher revealed how the present vulnerability is applicable to any host associated with a Docker engine.
May 22nd, 2018 | 19 mins 58 secs
cloudnativecon, cncf, kccn, kubecon, kubernetes, opa, open policy agent, policy, software development, software engineering
On this episode of The New Stack Makers, TNS Editor-in-Chief Alex Williams sits down with Chris Aniszczyk, COO of the Cloud Native Computing Foundation, and Torin Sandall, a Software Engineer at Styra, to discuss how the Open Policy Agent (OPA) is a secure, simple, and compliant way to manage services.
"From a CNCF perspective, policy was a missing piece within our cloud native landscape," Aniszczyk explained, discussing why the Foundation on-boarded OPA.
January 17th, 2018 | 20 mins 59 secs
application development, cloud, cloudnativecon, cncf, developers, devops, iot, kubecon, kubernetes, open source, podcast, programming, software, software development, tech, technology
On today's episode of The New Stack Makers, we were joined by Cloud Native Computing Foundation COO Chris Aniszczyk alongside Weaveworks CEO Alexis Richardson to address all things CNCF, including its roadmap heading into 2018 and beyond.