Patrycja is a lead engineer at Form3, Financial Cloud, working on multi-cloud connectivity and improving scalability and performance of UK payments. She is also the founder of Yon Labs, a startup focusing on automated tools for detection and refactoring of security vulnerabilities, performance anti-patterns, or cloud issues and providing consultancy in Java and cloud technologies.
She is a regular speaker at software conferences, including CodeOne, JavaOne, Devoxx, JFokus, and others. She was awarded an Oracle Groundbreaker Ambassador title in 2020 and 2021. She was also named as one of Top 10 Women in Tech in Poland in 2016.
Her interests focus on automated software engineering, mainly static and dynamic analysis techniques to support software verification, optimization, and deployment.
Kubernetes is the most popular container orchestration platform for automated deployment, scaling, and management of containerized applications. With more and more applications running in Kubernetes, it is crucial to understand Kubernetes security risks.
This talk guides you through various security risk of Kubernetes, focusing on OWASP Kubernetes Top 10 list. In live demos, you’ll find out how to exploit a range of past and present CVEs or misconfigurations in your k8s clusters, attacking containers, pods, supply chain, network, or storage. You’ll learn about common mistakes and vulnerabilities along with the best practices for hardening your Kubernetes systems.
One cluster and one cloud are not enough to guarantee a highly available resilient architecture. For critical systems, it may be crucial to provide triple active resiliency. But how to achieve this?
This talk shows a triple active architecture based on a cluster mesh between AWS, GCP, and Azure using Kubernetes and Cilium. In addition to a live demo of a working cluster mesh across three clouds, the talk discusses multi-cloud networking and Cilium as a CNI plugin with meshing capabilities. The talk focuses on an honest review of Cilium based on real-life experience. It contains a deep dive into routing and meshing configuration problems, cloud-specific limitations, as well as detailed Cilium performance results in a multi-cloud environment.
The summary provides guidelines on architectural patterns and functional use cases for cluster meshes with Cilium, highlighting Cilium strengths and weaknesses.