Team Nirmata at KubeCon EU 2024: Modern Security for Modern Apps

Team Nirmata at KubeCon EU 2024: Modern Security for Modern Apps

This year, KubeCon + CloudNativeCon Europe 2024 drew over 12,000 tech enthusiasts from the leading cloud native and open source communities, and celebrated the milestone of Kubernetes’ tenth anniversary. Four days with 223 sessions and 90 CNCF project maintainer-hosted sessions provided valuable insights on the evolution and maturity of cloud native technologies, Kubernetes, platform engineering, supply chains, and security and governance. As the curtains closed on yet another remarkable KubeCon event, our team gathered some valuable insights about state-of-the-art cloud-native software development and several modern operations and deployment techniques. 


Nirmata Team at KubeCon Paris 2024

We had a remarkable presence at the event, and could engage with the attendees in live demos, hands-on experiences and insightful conversations, and discussed how to prevent misconfigurations anywhere with policy as code. 

Sessions and activities

As a leading provider of comprehensive policy-based security and governance for Kubernetes, our team had an opportunity to present five sessions and one Kyverno workshop during KubeCon Paris. We had Nirmata and Kyverno booths where event participants could interact with our team members, learn more about our products, and discuss their use cases. 

There was an exciting lightning talk on Kyverno, which covered Kyverno’s top-10 features that set it apart as a cloud native policy management tool.

Screenshot 2024 03 27 at 11.38.12 AM

Kyverno’s top-10 Features

Watch the recording: Kyverno Top 10: Automate Kubernetes Security with Policy as Code

Contribfest: Kyverno was a hands-on session that equipped participants to contribute to Kyverno. It was led by Kyverno maintainers and organizers so that both developers as well as non-developers can contribute across the software base, sample policies, and documentation.

IMG 7780

Kyverno Hands-on Session

There was also a talk about securing the software supply chain, and how Kyverno policies can be used for image verification.

Screenshot 2024 04 01 at 1.39.11 PMImage Verification Using Kyverno

Watch the video: Enabling the Software Supply Chain Ecosystem with Notary Project

Members of the Kubernetes Policy Working Group (WG) did a deep dive into each available flavor of policy, from built-in API resources and admission controls, to the new ValidatingAdmissionPolicies which are customizable using the Common Expressions Language (CEL), and powerful policy as code OSS projects that leverage dynamic admission controls.

Screenshot 2024 04 01 at 11.58.11 AMKubernetes Policy Working Group (WG)

Watch the video: Kubernetes Policy Time Machine: Where to Next? 

The event also included a session on cloud native governance with Kyverno, where Raul, a Kyverno end user and platform lead at DE-CIX, introduced the project for new users and discussed his organization’s journey with policy as code. Next, Kyverno maintainers Mariam Fahmy and Charles-Edouard provided key updates and discussed advanced features including new sub-projects like Kyverno JSON and Kyverno Chainsaw, and shared the project roadmap.

Screenshot 2024 03 27 at 10.02.14 AM

Cloud Native governance with Kyverno

Watch the video: From Chaos to Control: Cloud Native Governance with Kyverno!

Key Takeaways from KubeCon Paris 2024

  • Shift of focus to security and governance:  As the modern cloud-native architectures become more complex, there is an increasing need to implement robust security measures. Nirmata is committed to staying at the forefront of cloud-native security, ensuring that our solutions provide the highest levels of protection for our customers’ data and applications.
  • Insightful sessions: KubeCon featured a wide array of sessions and talks, covering everything from best practices and real-world case studies to the latest developments in Kubernetes and cloud-native technologies. Our team had the opportunity to attend several valuable sessions that helped broaden their perspectives on Kubernetes management.
  • Community collaboration: At Nirmata, we support the open-source community and also recognize their efforts so that we all can work together as a team. KubeCon Paris reaffirmed the power of diverse community collaboration and involvement.
  • Customer-centric approach: Above all, KubeCon Paris reinforced the importance of a customer-centric approach in everything we do. We at Nirmata remain focused on understanding and addressing the needs of our customers, ensuring that the solutions we build can deliver tangible value to their businesses.


What’s next for you?

If you want to get involved, there are several options depending on where you are on your  Kubernetes policy and governance journey.

  • Read our KubeCon EU press release here.
  • We have updated our free ebook. Please download it here: Securing Kubernetes using Policy-as-code.
  • We also host Nirmata Office Hours for Kyverno, an interactive session and livestream hosted by the team at Nirmata, the creators of Kyverno, where we discuss all things Kubernetes policy and governance! Office hours occur on the second Thursday of every month at 10am EST / 7am PST. Join the Google group to receive a calendar invite with meeting details. Watch the previous sessions.
  • Join the conversation on Kyverno Slack. Over 2700 Kyverno community members interact, ask questions and share best practices with over 75% of the channel members participating in the conversation! Or, why not try to complete free Kyverno certification.
  • Join our Kyverno User Group LinkedIn channel for regular updates and insightful discussions.


See you at future events!

This is going to be an exciting year for Nirmata. We will be attending the following events this year:

  • KCNA Salt Lake City UT: Nov 12-15th.
  • KubeCon in New Delhi, India: Dec 11-12th.
  • AWS re:Invent: Las Vegas, NV- Dec 2-6th.
  • Our team will also be attending GitOps Con NA: Seattle, KCD New York, AWS re: Inforce, CloudNativeSecurityCon-Seattle, WA, AWS NY Summit, and several other KCDs across USA, Europe, China and India.
  • We will be having an AWS workshop in the month of August.
  • Our team would be participating in  several webinars and livestreams, and will be organizing Meetups. Information will be published on our website and social media channels.
  • Meanwhile, if you want to learn more on streamlining your operations for Kubernetes clusters, why not request a complimentary demo? Do that here with Nirmata!


    KubeCon Paris 2024 was a remarkable event which witnessed the focus on empowering developers and ensuring privacy, security and compliance. It is becoming increasingly evident that the future of cloud computing is quite bright, and our team is all geared towards enabling companies worldwide in their cloud native journey. 

    See you all soon!!

    XZ: A Case Study in Open-Source Supply Chain Attacks
    A Proactive Approach to Address Windows Vulnerability (CVE-2023-5528) with Kyverno
    No Comments

    Sorry, the comment form is closed at this time.