AWS re:Inforce 2019: Architecting Security through Policy Guardrails in Amazon EKS (SDD411)
Amazon EKS makes it easy to run Kubernetes on AWS without managing master nodes or etcd operators. Kubernetes offers a powerful abstraction layer for managing containerized infrastructure, which presents unique challenges to AWS media customers. In this session, we share lessons from Synamedia, and we discuss its reasons for moving to EKS and the security and governance implications for migrating workloads. Learn about the approach and benefits for establishing security and governance with Open Policy Agent (OPA), which uses Kubernetes validating and mutating admission controllers to establish policy guardrails for container registries, input, load balancers, and other objects within EKS.
Complete Title: AWS re:Inforce 2019: Architecting Security and Governance through Policy Guardrails in Amazon EKS (SDD411)
– Stephen Tallamy, Synamedia