security - Scaleway Blog

K8s security - Episode 5: Lock your data

In episode 4, we detailed some of the main security issues that are found into software, and it is no surprise that information leakage is one of the most frequent security flaw.

Kubernetes

K8s security - Episode 4: Managing third parties

As you secured your Kubernetes cluster, you defined users, roles, and permissions, making it safer one restriction after the other. Along with user accesses, you also need to control what is being authorized by the services you did not create yourself, and that you depend upon: third parties.

Kubernetes

K8s security - Episode 3: Security as a coding philosophy

Interactions between software are key to product security. As we are able to isolate components depending on their communication with each other, we can take a step back and think about how we want to design.

Kubernetes

K8s security - Episode 2: Secure your K8s cluster at its root

Our goal is not to dissect a k8s cluster but to understand what needs to be secured and, most importantly, how.

Kubernetes

K8s security - Episode 1: From the Cloud to your code

In this series of articles, we intend to highlight the best practices that any Kubernetes user can put in place by demystifying Kubernetes clusters architecture and security. We will also provide clear guidelines and basic configurations to apply to your clusters to be safer and more secure.

Scaleway

Use a VPN to secure your services and internal data

The use of a VPN is particularly useful with the massive arrival of work from home. Using a VPN allows you to add an additional layer of security to access internal services

Scaleway

Utiliser un VPN pour sécuriser l'accès à vos services et vos données

L’utilisation d’un VPN est particulièrement utile avec l’arrivée massive du télétravail. Il permet en effet d’ajouter une couche de sécurité supplémentaire

security

ZombieLoad, la nouvelle vulnérabilité affectant les équipements Intel

Chers Cloud Riders, Comme vous le savez sans doute, Intel a publié hier de nouvelles vulnérabilités de sécurité susceptibles d’affecter les fournisseurs de services cloud. Résumé de l’impact sur nos infrastructures

security

ZombieLoad Vulnerabilities Impacting Intel Hardware

Dear Cloud Riders, As you may know, yesterday was the publication of multiple Intel new security vulnerabilities that may affect cloud service providers. Quick summary. Impact on our infrastructures: Dedibox impactedC2 Bare Metal

Scaleway

Important information about Intel Side Channel Vulnerability L1TF

As you may have read elsewhere in the media, Intel recently published details of a new side-channel attack called L1 terminal fault (L1TF). The L1TF issue only affects hardware capable of simultaneous multithreading

Scaleway

Strengthening Scaleway Token Security Policy

Introducing Access Keys and Secrets Currently, to authenticate on the Scaleway APIs, you use a token. This token is a value (an UUID precisely) that is typically used in an HTTP header in