Name: Enforcing Bespoke Policies in Kubernetes [I] - Torin Sandall, Styra
Start: 2017-12-08T11:55:00-0600
End: 2017-12-08T12:30:00-0600

Back To Schedule

Enforcing Bespoke Policies in Kubernetes [I] - Torin Sandall, Styra

Kubernetes enables fully-automated, self-service management of large-scale, heterogenous deployments. These deployments are often managed by distributed engineering teams that have unique requirements for how the platform treats their workloads, but at the same time, they must conform to organization-wide constraints around cost, security, and performance. As Kubernetes matures, extensibility has become a critical feature that organizations can leverage to enforce their organization’s bespoke policies.

In this talk, Torin explains how to use extensibility features in Kubernetes (e.g., External Admission Control) to enforce custom policies over workloads. The talk shows how to build custom admission controllers using Initializers and Webhooks, and shows how the same features lay the groundwork for policy-based control through integration with third party policy engines like the Open Policy Agent project.

Speakers

Torin Sandall

VP of Open Source, Styra

Torin Sandall is a co-founder of the Open Policy Agent (OPA) project. Torin has spent 10 years as a software engineer working on large-scale distributed systems projects. Torin is a frequent speaker at events like KubeCon, DockerCon, Velocity, and more. Prior to working on OPA, Torin... Read More →

Enforcing Bespoke Policies in Kubernetes pdf

Friday December 8, 2017 11:55am - 12:30pm CST
Meeting Room 12AB, Level 4

Policy + Security - KubeCon

Audience Intermediate
Link to Session Recording https://youtu.be/llDI8VvkUj8

KubeCon + CloudNativeCon North America 2017

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Torin Sandall