Confidential Computing, with Fabian Kammel
11/23/23 • 53 min
Fabian Kammel is a Security Architect at ControlPlane, where he helps to make the (cloud-native) world a safer place. In his career, he continuously worked to bring hardware security and cloud-native security closer together. His past projects include:
A cloud-native PKIs for on-road vehicle services secured by enterprise HSMs
An always-encrypted Kubernetes distribution that harnesses the power of Confidential Computing
And more recently securing SPIFFE-based machine identities via hardware attestation.
Do you have something cool to share? Some questions? Let us know:
mail: [email protected]
twitter: @kubernetespod
Links from the interviewConfidential Computing Blog from kubernetes.io
Confidential Computing Consortium
Confidential Computing Whitepaper
Swap Memory with Kubernetes in Beta in 1.28
Trusted Platform Modules (TPM)
Confidential Computing Concepts - Confidential Virtual Machine
AMD Secure Encrypted Virtualization (AMD SEV)
AMD Secure Encrypted Virtualization - Secure Nested Paging (AMD SEV SNP)
Confidentiality, Integrity, and Availability: The CIA Triad
Fabian Kammel is a Security Architect at ControlPlane, where he helps to make the (cloud-native) world a safer place. In his career, he continuously worked to bring hardware security and cloud-native security closer together. His past projects include:
A cloud-native PKIs for on-road vehicle services secured by enterprise HSMs
An always-encrypted Kubernetes distribution that harnesses the power of Confidential Computing
And more recently securing SPIFFE-based machine identities via hardware attestation.
Do you have something cool to share? Some questions? Let us know:
mail: [email protected]
twitter: @kubernetespod
Links from the interviewConfidential Computing Blog from kubernetes.io
Confidential Computing Consortium
Confidential Computing Whitepaper
Swap Memory with Kubernetes in Beta in 1.28
Trusted Platform Modules (TPM)
Confidential Computing Concepts - Confidential Virtual Machine
AMD Secure Encrypted Virtualization (AMD SEV)
AMD Secure Encrypted Virtualization - Secure Nested Paging (AMD SEV SNP)
Confidentiality, Integrity, and Availability: The CIA Triad
Previous Episode
etcd, with Marek Siarkowicz and Wenjia Zhang
Guests are Marek Siarkowicz , Senior Software Engineer in Google Cloud, Tech Lead of SIG-etcd AND Wenjia Zhang, Engineering Manager in Google Cloud, Co-Chair of SIG-etcd, Google. We spoke about the project, the recent change to become a Special Interest Group and how to learn etcd.
Do you have something cool to share? Some questions? Let us know:
mail: [email protected]
twitter: @kubernetespod
News of the weekCo-host this week is Mofi Rahman [X, LinkedIn]. Cloud Developer Advocate at Google
The Kubernetes SIG Network announced release 1.0 of the Gateway API
Ingress2gateway new CLI to migrate from Ingress to Gateway
The Call for Proposals for KubeCon EU 2024 will close on Nov 26, 2023
Links from the interviewOn the Hunt for Etcd Data Inconsistencies by Marek Siarkowicz - [youtube]
Lessons Learned From Etcd the Data Inconsistency Issues by Marek Siarkowicz - [youtube]
CNCF Contributor License Agreements (CLA)
Contributor Experience Special Interest Group
Go Serialization and Deserialization
Certified Kubernetes Administrator
Links from the post-interview chatKubernetes considerations for large clusters
Next Episode
Kubernetes Pen Testing, with Jesper Larsson
Jesper Larsson is a Freelance PenTester. Jesper works with a hacker community called Cure53. Co-organizes SecurityFest in Gothenburg, Sweden. Hosts Säkerhetspodcasten or The Security Podcast. Jesper is also a Star on Hackad, a Swedish TV Series about hacking.
Do you have something cool to share? Some questions? Let us know:
mail: [email protected]
twitter: @kubernetespod
News of the weekKubernetes Removals, Deprecations, and Major Changes in Kubernetes 1.29
etcd, with Marek Siarkowicz and Wenjia Zhang (The Kubernetes Podcast from Google)
WebAssembly (WASM) and OpenShift: A Powerful Duo for Modern Applications
Pass the torch in ContribEx #7603
Links from the interviewWolfi by Chainguard
The Untold Story of NotPetya, the Most Devastating Cyberattack in History
Links from the post-interview chatThe Untold Story of NotPetya, the Most Devastating Cyberattack in History
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/kubernetes-podcast-from-google-281709/confidential-computing-with-fabian-kammel-37591568"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to confidential computing, with fabian kammel on goodpods" style="width: 225px" /> </a>
Copy