Artificial Intelligence

Presenters Tyler Schade Source OpenSource SecurityCon NA 2025 From Bare Metal to Bulletproof: Securing Your Cloud-Native Kingdom with TPMs and SPIRE 🚀 The quest for secure, modern infrastructure is a constant battle, especially in the dynamic world of cloud-native. Geico Insurance, a company at the forefront of digital transformation, is tackling this challenge head-on, not just in the cloud, but right down to the foundational bare metal of their data centers. Tyler Shade, a Software Engineer at Geico, shared his team’s compelling journey into bootstrapping trust and building a truly secure, identity-first infrastructure. ...

Presenters Maxime Coquerel Source OpenSource SecurityCon NA 2025 Revolutionizing Kubernetes Security: From Weeks to Days with AI-Powered Threat Modeling 🚀 In today’s rapidly evolving cloud landscape, securing Kubernetes deployments isn’t just a good idea; it’s an absolute necessity. The intricate nature of Kubernetes, with its distinct control and data planes, presents a complex web of potential vulnerabilities. But what if we told you that the arduous task of threat modeling, which traditionally consumes weeks, could be slashed down to mere days? That’s precisely the promise of an innovative AI-powered solution presented by Maxim Cochril, Principal Cloud Security Architect at RBC and CNCF Ambassador. ...

Presenters Mariusz Sabath Maia Iyer Source OpenSource SecurityCon NA 2025 Agent Security Unleashed: Building Trustworthy AI with a Zero Trust Approach 🚀 The modern developer’s life is a juggling act. Between managing code on GitHub, collaborating on Slack, and countless other tools, the quest for efficiency is constant. Enter agentic applications – the promise of automating those repetitive tasks and offering a single, powerful interface to control your entire digital ecosystem. Sounds amazing, right? While setting up local agents with API keys is relatively straightforward, taking these intelligent assistants to the cloud unlocks a whole new world of security challenges. ...

Presenters Sarah Evans Source OpenSource SecurityCon NA 2025 Securing the AI Frontier: A New Era of MLOps Security 🚀 The world of Artificial Intelligence is exploding, and with it, the urgent need for robust security practices. But let’s be honest, for many traditional security teams, diving into the intricate world of machine learning can feel like stepping into uncharted territory. That’s where Sarah Evans and her groundbreaking white paper come in! Fresh from a pivotal presentation, this new resource, born from a collaboration with the AI/ML working group, is set to become your go-to guide for securing the AI frontier by translating time-tested DevOps and DevSecOps principles into the unique realm of Machine Learning Operations (MLOps). ...

Presenters Anjali Telang Source OpenSource SecurityCon NA 2025 🚀 Revolutionizing Workload Identity: Your Guide to Production-Ready SPIFFE and SPIRE In the ever-evolving landscape of cloud-native computing, securing what your applications are is just as critical as securing where they are. Gone are the days when network perimeters were enough. Today, workloads, just like users, need verifiable identities. Enter SPIFFE and SPIRE, two CNCF-graduated projects that are set to become the bedrock of your zero-trust strategy. Anjali Tang, a Product Manager for OpenShift specializing in identity and access control, recently shared her deep dive into making these powerful tools production-ready, and we’re here to break it down for you! ✨ ...