In-person + Virtual
18-21 April
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central European Summer Time (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis. 
Back To Schedule
Thursday, April 20 • 11:55 - 12:30
Kubernetes Security Response Committee: Intro & Deep Dive - Monis Khan, Microsoft & Micah Hausler, AWS

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

The Kubernetes Security Response Committee (SRC) is responsible for the security release process for Kubernetes. In this talk, we will go over what that involves such as the lifecycle of a vulnerability, all the way from the initial report to the public disclosure. The overall responsibilities of SRC will be discussed, with highlights around the differences between SRC, SIG Auth, and SIG Security. Finally, we will also discuss some of the interesting findings from 2022 security audit, and how they impacted the community, as well as the changes that were made to help prevent similar issues in the future. We hope to increase awareness within the community as we have seen multiple instances where folks have not known about the existence of SRC or the process for reporting a vulnerability.

avatar for Mo Khan

Mo Khan

Software Engineer, Microsoft
Mo Khan is a software engineer who is passionate about open source and security. He started working on Kubernetes in 2016, and currently serves as a chair and subproject owner for Kubernetes SIG Auth, a member of the Kubernetes Security Response Committee and a contributor to SIG... Read More →
avatar for Micah Hausler

Micah Hausler

Principal Engineer, AWS
Micah is a Kubernetes contributor, a member of the Kubernetes Security Response Committee, and a Principal Engineer working on EKS at Amazon Web Services.

Thursday April 20, 2023 11:55 - 12:30 CEST
E105-106 | First Floor | Congress Centre