Subhanshu Mohan Guptablogs.subhanshumg.com·Oct 2, 2024Ensuring PCI-DSS, POPI, GDPR, and HIPAA Compliance in Kubernetes SystemsIntroduction Welcome to Part IV of my Kubernetes series, where we delve into building compliant systems on Kubernetes to meet stringent regulatory standards such as PCI-DSS, POPI, GDPR, and HIPAA. As businesses continue to adopt containerized environ...10 likes·39 readsMastering Kubernetes: Revolutionizing Cloud-Native Operationspcidss
Reza Rashidirezaduty-1685945445294.hashnode.dev·Jul 15, 2024Attacking PolicyOpen Policy Agent (OPA) is a versatile tool used to enforce policies and ensure compliance within a DevSecOps environment. However, security misconfigurations in OPA can lead to significant vulnerabilities. One common issue is overly permissive polic...1 like·269 readsPolicy
SIDDHANT VIJAY SINGHforInfrasity Bloginfrasityblog.hashnode.dev·Oct 5, 2023Simplified Infrastructure Audit: Terrateam with OPA PoliciesIn the realm of Terraform, creating infrastructure was a breeze, but challenges loomed. How could teams ensure rule adherence? Were the right tags and naming conventions followed? Many organizations grappled with these questions. Terraform, though ef...48 readsTerrateam
Jayakumar Sakthivelcloudwithjk.hashnode.dev·Sep 11, 2023Open Policy Agent (OPA) in Terraform (IaC)What is OPA? The Open Policy Agent (OPA) is a general-purpose policy engine that can assess Rego-expressed rules using information compiled in JSON format from various sources. A policy's enforcement may make use of an evaluation's findings. It offer...1 like·54 readsTerraform
Sidharthan Chandrasekaran Kamarajthebugshots.dev·Sep 6, 2023Safeguard Your REST APIs Using Open Policy Agent - OPAAuthorization is a crucial concern for most applications. As app logic grows, permission checks often get scattered across handlers, middlewares, and external services. This leads to duplicated logic and inconsistencies. Open Policy Agent (OPA) provi...142 readsGolangopa
BootLabsblog.bootlabstech.com·Jul 21, 2023Gatekeeper vs KyvernoGatekeeper is a general-purpose policy engine based on Open Policy Agent (OPA). It allows you to define and enforce custom policies across various Kubernetes resources. Kyverno is specifically designed for Kubernetes policy management. It focuses o...875 readsgatekeeper
Nicolas FränkelforApache APISIXapisix.hashnode.dev·Mar 2, 2023Make your security policy auditableLast week, I wrote about putting the right feature at the right place. I used rate limiting as an example, moving it from a library inside the application to the API Gateway. Today, I'll use another example: authentication and authorization. Securing...5 likes·46 readsSecurity
