Founder and CTO, Luntry
Dmitriy is the founder and CTO of Luntry; an information security researcher for over 10 years.
He is developing a K8s security & observability solution. The researcher is convinced that in order to make a system reliable and secure, it must first be understood in and out. Dmitriy is the author of the Kubernetes “k8s (in)security” channel in Telegram and the creator of the course “Cloud native security in Kubernetes.”
Most large and medium‑sized companies, regardless of the industry, have moved beyond just having the internal IT infrastructure. While proprietory software development is already the standard rather than the exception, this process poses new security risks and threats.
The speaker will share stories, observations, and ideas from his years of working on IS and IT projects. He will present his vision of the changing landscape of information systems around us, and how this affects the security of such systems.
The topics include: backdoors, security supply chain, DevSecOps, updates, signature‑based detection, reactive and active security, trade‑off between security and convenience, and other seemingly insignificant and longstanding issues that nevertheless affect the approach to information security.
The deception phase of information systems security is often unjustifiably neglected. Even though it can be used to provoke an intruder, who is trying to infiltrate your system or has already done so, to expose themselves and thereby detect them.
Can this be done in Kubernetes? Of course, yes, and often using its own built‑in mechanisms, which makes it much easier to create deception in a cluster.