Artificial Intelligence

Presenters Maxime Coquerel Source OpenSource SecurityCon NA 2025 Revolutionizing Kubernetes Security: From Weeks to Days with AI-Powered Threat Modeling 🚀 In today’s rapidly evolving cloud landscape, securing Kubernetes deployments isn’t just a good idea; it’s an absolute necessity. The intricate nature of Kubernetes, with its distinct control and data planes, presents a complex web of potential vulnerabilities. But what if we told you that the arduous task of threat modeling, which traditionally consumes weeks, could be slashed down to mere days? That’s precisely the promise of an innovative AI-powered solution presented by Maxim Cochril, Principal Cloud Security Architect at RBC and CNCF Ambassador. ...

Presenters Mariusz Sabath Maia Iyer Source OpenSource SecurityCon NA 2025 Agent Security Unleashed: Building Trustworthy AI with a Zero Trust Approach 🚀 The modern developer’s life is a juggling act. Between managing code on GitHub, collaborating on Slack, and countless other tools, the quest for efficiency is constant. Enter agentic applications – the promise of automating those repetitive tasks and offering a single, powerful interface to control your entire digital ecosystem. Sounds amazing, right? While setting up local agents with API keys is relatively straightforward, taking these intelligent assistants to the cloud unlocks a whole new world of security challenges. ...

Presenters Sarah Evans Source OpenSource SecurityCon NA 2025 Securing the AI Frontier: A New Era of MLOps Security 🚀 The world of Artificial Intelligence is exploding, and with it, the urgent need for robust security practices. But let’s be honest, for many traditional security teams, diving into the intricate world of machine learning can feel like stepping into uncharted territory. That’s where Sarah Evans and her groundbreaking white paper come in! Fresh from a pivotal presentation, this new resource, born from a collaboration with the AI/ML working group, is set to become your go-to guide for securing the AI frontier by translating time-tested DevOps and DevSecOps principles into the unique realm of Machine Learning Operations (MLOps). ...

Presenters Anjali Telang Source OpenSource SecurityCon NA 2025 🚀 Revolutionizing Workload Identity: Your Guide to Production-Ready SPIFFE and SPIRE In the ever-evolving landscape of cloud-native computing, securing what your applications are is just as critical as securing where they are. Gone are the days when network perimeters were enough. Today, workloads, just like users, need verifiable identities. Enter SPIFFE and SPIRE, two CNCF-graduated projects that are set to become the bedrock of your zero-trust strategy. Anjali Tang, a Product Manager for OpenShift specializing in identity and access control, recently shared her deep dive into making these powerful tools production-ready, and we’re here to break it down for you! ✨ ...

Presenters Gyu Tae Bae Source CiliumCon NA 2025 Taming the BPF ARU: A Journey to Eliminate TCP Resets in Kubernetes 🚀 Ever experienced the dreaded TCP resets in your Kubernetes cluster, especially after adopting eBPF for network performance? You’re not alone! In this post, we’ll dive deep into a real-world scenario where a seemingly small issue with eBPF’s Address Resolution Unit (ARU) maps led to significant network instability. But fear not, because we’ll also uncover how to diagnose, fix, and even enhance your eBPF network solutions. ...