Cloud Native Security

Explore the latest and most comprehensive guide to securing your Cloud Native technology stack

Cloud Native Security delivers a detailed study into minimizing the attack surfaces found on today's Cloud Native infrastructure. Throughout the work hands-on examples walk through mitigating threats and the areas of concern that need to be addressed. The book contains the information that professionals need in order to build a diverse mix of the niche knowledge required to harden Cloud Native estates.

The book begins with more accessible content about understanding Linux containers and container runtime protection before moving on to more advanced subject matter like advanced attacks on Kubernetes. You'll also learn about:

• Installing and configuring multiple types of DevSecOps tooling in CI/CD pipelines
• Building a forensic logging system that can provide exceptional levels of detail, suited to busy containerized estates
• Securing the most popular container orchestrator, Kubernetes
• Hardening cloud platforms and automating security enforcement in the cloud using sophisticated policies

Perfect for DevOps engineers, platform engineers, security professionals and students, Cloud Native Security will earn a place in the libraries of all professionals who wish to improve their understanding of modern security challenges.

探索最新且最全面的指南，以保護您的雲原生技術堆疊。

《雲原生安全》提供了對當今雲原生基礎架構中最小化攻擊面的詳細研究。本書通過實際示例介紹了如何減輕威脅和需要解決的問題。本書包含了專業人士在構建多樣化的專業知識組合以加強雲原生資產安全性方面所需的信息。

本書首先介紹了更易理解的內容，包括了解Linux容器和容器運行時保護，然後深入探討了更高級的主題，如針對Kubernetes的高級攻擊。您還將學習到以下內容：

- 在CI/CD流程中安裝和配置多種DevSecOps工具
- 構建可提供極高細節級別的法庭日誌系統，適用於繁忙的容器化資產
- 保護最受歡迎的容器編排工具Kubernetes
- 強化雲平台並使用複雜策略自動執行安全措施

《雲原生安全》非常適合DevOps工程師、平台工程師、安全專業人員和學生閱讀，將成為所有希望提升對現代安全挑戰理解的專業人士的圖書館中的必備之作。

CHRIS BINNIE is a Technical Consultant who has worked for almost 25 years with critical Linux systems in banking and government, both on-premise and in the cloud. He has written two Linux books, has written for Linux and ADMIN magazines and has five years of experience in DevOps security consultancy roles.

RORY MCCUNE has over 20 years of experience in the Information and IT security arenas. His professional focus is on container, cloud, and application security and he is an author of the CIS Benchmarks for Docker and Kubernetes and has authored and delivered container security training at conferences around the world.

CHRIS BINNIE 是一位技術顧問，他在銀行和政府等領域擁有近25年的關鍵Linux系統工作經驗，包括本地部署和雲端部署。他撰寫了兩本Linux書籍，並為《Linux》和《ADMIN》雜誌撰寫文章，並在DevOps安全顧問角色中擁有五年的經驗。

RORY MCCUNE 在資訊和IT安全領域擁有超過20年的經驗。他專注於容器、雲端和應用程式安全，並為Docker和Kubernetes的CIS基準撰寫者之一。他還在世界各地的會議上撰寫並提供容器安全培訓。