Cloud-Native

With the Digital Operational Resilience Act (DORA) now in effect across the European Union as of January 17, 2025, financial institutions face unprecedented cybersecurity and operational resilience requirements. Successfully achieving DORA compliance demands a comprehensive security strategy that also includes the following three fundamental components: Robust secrets management Hardened container images with minimal vulnerabilities Unified cloud-native application protection platforms (CNAPPs) These technologies work synergistically to meet DORA’s stringent ICT risk management, asset identification, and third-party oversight mandates. ...

The countdown to KubeCon EU (London) has begun, and I couldn’t be more thrilled to announce that, for the third year in a row, I’ll have the incredible privilege of attending! This year is extra special because, for the second time, I’ll be managing a booth alongside my amazing colleagues. Why? Because ReeVo, the company that SIGHUP has now joined, will proudly be a sponsor of this major event! ...

One of the pleasures of working with open-source software (OSS) and community-driven initiatives is the endless opportunities they offer. If you ever find yourself with “not enough” to do at work (yes, that’s ironic!), there’s always an easy way to take on something extra and meaningful. Contributing back to the community you’re part of is a wonderful way to express gratitude. After all, how could anyone be luckier than to give back to something they love? 😊 ...

Yesterday, the organizers of KCD Italy announced that the conference will return in 2025, once again in Bologna, in June! For various organizational reasons, the conference will be rebranded as Cloud Native Days Italy, but the quality will remain just as high. At the moment, no further details are available. Start marking your calendar—see you in Bologna!

Last week, I had the pleasure of attending KubeCon 2024 EU in Paris. I must begin by thanking SIGHUP for giving me the opportunity to participate in my second consecutive KubeCon, THANK YOU! I decided to write this post to encourage those who have never attended a large-scale event to give it a try! In this case, size matters! If you’re involved in the cloud native world as a client, developer, consultant, or major vendor you can’t miss it! Colleagues, clients, partners, competitors, maintainers of small projects, volunteer committees, and big corporations—they’re all there! ...

Hello there! As I mentioned before, I’ve always been a community person, and I’ve found a new way to contribute: during the first half of 2024, I’ll be one of the editors helping to curate content for KubeWeekly. KubeWeekly is a newsletter that delivers a curated selection of news, tweets, articles, and videos about Kubernetes and the CNCF landscape straight to your inbox. If you’d like to see what we’re working on or join the mailing list, please check out this page! ...

Hello there! Just a quick post to share that KCD Italy has been announced and will take place in Bologna on 20 June 2024! I’m not directly involved in organizing this event, but my company is, so I’m publishing this post to help spread the word! The CFP (Call for Proposals) is open and available at this link. English sessions are welcome! We are also still looking for new sponsors. If you’re interested, please contact one of the organizers or reach out to me, and I’ll put you in touch with them. ...

Yesterday, KubeCon NA in Chicago came to a close, so now we can start looking forward to KubeCon EU 2024, which will take place in Paris from March 19th to 22nd, 2024 😊. For Paris, early bird registrations are open until November 28th, and it’s still possible to submit proposals for the call for papers. I wanted to share an interesting initiative called Kubetrain, which aims to help attendees reach Paris in a more environmentally sustainable way by choosing trains over planes. ...

I’ll start with a premise for those who may not already be familiar: the open-source software ecosystem often revolves around foundations, with the most famous probably being the Linux Foundation. In the cloud-native domain, the reference foundation is the Cloud Native Computing Foundation, commonly known as CNCF. CNCF is a foundation created by the Linux Foundation in 2015, specifically to manage projects in the cloud-native domain. In simple terms, it can be defined as a third-party, vendor-neutral entity that oversees the development and activities related to major projects involving containerized technologies like Kubernetes. ...

During the past few weeks, I have described what a secrets manager is and provided an overview of the architecture and system requirements of CyberArk Conjur. A secrets manager can’t do its job if it can’t communicate with those who need to request secrets, and that’s where Conjur’s magic comes in! The “authenticators” are responsible for the authentication process in Conjur and are specialized to do this in the most secure way, depending on the service. Here is the list of authenticators currently supported: ...