Sign up to save your podcasts
Or
Share Shopify and Security, with Jon Pulsifer
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Shopify and Security, with Jon Pulsifer
Jon Pulsifer is a Production Security Engineer at Shopify, and Canada's biggest Kubernetes fan. Adam and Craig dig into why, and what Adam's new mode of transport is going to be.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
- Sling TV using Kubernetes
- Tesla using Kubernetes?
- MITMproxy, Charles and Fiddler
- Intercept HTTP traffic exiting a docker container
- Adam has a lot of EconoLodge points
- Not as many as Software Defined Talk hosts Matt Ray and Michael Coté
- Craig thinks he should spend them on the Pepsi jet as seen in this wonderful video
- Service Networking in a Hybrid Infrastructure by Praveen Shukla from GoJek
- KubeCon and CloudNativeCon China
- Craig's session
- 7 best practices for operating containers by Théo Chamley from Google Cloud
- kustomize on Homebrew for macOS
- Understanding the Container Storage Interface (CSI) by Anoop Vijayan Maniankara
- The Istio 1.0 Release Stream or jump straight to the part with Dan Ciruli from episode 15
- Royal Canadian Navy - Canadian Forces NOC
- SANS institute and instructors
- Jon Pulsifer is a Production Security Engineer at Shopify
- Why Shopify Moved to The Production Engineering Model
- Production Engineering from Facebook
- SRE from Google
- They're hiring!
- Shopify's adopting Kubernetes and Google Cloud
- The evolution of Kubernetes security
- Before RBAC, you used to have to mount an empty directory over the service account to disable access to it
- seccomp and AppArmor
- RBAC
- PodSecurityPolicy
- gVisor and Kata Containers
- Planning for Secure Container Isolation in Kubernetes
- RuntimeClass enhancement proposal
- Binary Authorization
- Launch blog post
- Kritis - open source reference implementation of Binary Authorization (the judge)
- Grafaes - API spec for Container Analysis API
- Shopify Voucher, a tool that creates attestations for Binary Authorization and prevents the deployment of images that don't meet Shopify's security requirements.
- Jon's talk on Binary Authorization at Google Cloud Next: Securing the Software Supply Chain
- Shopify's $25,000 Kubernetes bug bounty payout
- What is a server-side request forgery?
- Getting started with security by reading kubesec.io
- Around Ottawa
- Kubernetes Ottawa meetup
- GDG Cloud Ottawa
- Jon's car
- Jon Pulsifer on Twitter
View all episodes
By Abdel Sghiouar, Kaslin Fields
4.8
179179 ratings
Jon Pulsifer is a Production Security Engineer at Shopify, and Canada's biggest Kubernetes fan. Adam and Craig dig into why, and what Adam's new mode of transport is going to be.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
- Sling TV using Kubernetes
- Tesla using Kubernetes?
- MITMproxy, Charles and Fiddler
- Intercept HTTP traffic exiting a docker container
- Adam has a lot of EconoLodge points
- Not as many as Software Defined Talk hosts Matt Ray and Michael Coté
- Craig thinks he should spend them on the Pepsi jet as seen in this wonderful video
- Service Networking in a Hybrid Infrastructure by Praveen Shukla from GoJek
- KubeCon and CloudNativeCon China
- Craig's session
- 7 best practices for operating containers by Théo Chamley from Google Cloud
- kustomize on Homebrew for macOS
- Understanding the Container Storage Interface (CSI) by Anoop Vijayan Maniankara
- The Istio 1.0 Release Stream or jump straight to the part with Dan Ciruli from episode 15
- Royal Canadian Navy - Canadian Forces NOC
- SANS institute and instructors
- Jon Pulsifer is a Production Security Engineer at Shopify
- Why Shopify Moved to The Production Engineering Model
- Production Engineering from Facebook
- SRE from Google
- They're hiring!
- Shopify's adopting Kubernetes and Google Cloud
- The evolution of Kubernetes security
- Before RBAC, you used to have to mount an empty directory over the service account to disable access to it
- seccomp and AppArmor
- RBAC
- PodSecurityPolicy
- gVisor and Kata Containers
- Planning for Secure Container Isolation in Kubernetes
- RuntimeClass enhancement proposal
- Binary Authorization
- Launch blog post
- Kritis - open source reference implementation of Binary Authorization (the judge)
- Grafaes - API spec for Container Analysis API
- Shopify Voucher, a tool that creates attestations for Binary Authorization and prevents the deployment of images that don't meet Shopify's security requirements.
- Jon's talk on Binary Authorization at Google Cloud Next: Securing the Software Supply Chain
- Shopify's $25,000 Kubernetes bug bounty payout
- What is a server-side request forgery?
- Getting started with security by reading kubesec.io
- Around Ottawa
- Kubernetes Ottawa meetup
- GDG Cloud Ottawa
- Jon's car
- Jon Pulsifer on Twitter
More shows like Kubernetes Podcast from Google
View all
Software Engineering Radio - the podcast for professional software developers
272 Listeners
The Changelog: Software Development, Open Source
289 Listeners
Security Now (Audio)
2,005 Listeners
Software Engineering Daily
624 Listeners
Risky Business
374 Listeners
The Cloudcast
151 Listeners
Talk Python To Me
581 Listeners
HBR IdeaCast
183 Listeners
NVIDIA AI Podcast
347 Listeners
Inside the Strategy Room
176 Listeners
AWS Podcast
207 Listeners
Last Week in AI
311 Listeners
Big Technology Podcast
513 Listeners
KubeFM
2 Listeners
The Pragmatic Engineer
72 Listeners