Shows
Open Source SecurityModern day authentication with Marc BoorshteinIn this discussion with Tremolo Security CTO Marc Boorshtein, we explore what modern day Single Sign-On (SSO) looks like. Everyone likes to talk about zero trust, but how does that work? We talk about some of the history of authentication that got us here, and some technical details on how you should be implementing authentication into your application. We finish up with some passkey details and realize every authentication discussion really just turns into complaining how hard identity is. The blog post for this episode can be found at https://opensourcesecurity.io/2025/2025-02-modern_day...
2025-02-0326 min
Hacker History PodcastThe history of Marc BoorshteinHacker History sits down with Marc Boorshtein, we learn of his journey from tinkering with Doom shareware as a kid and getting free hardware from his Dad. Marc tells us about the early days of LDAP and Kerberos to modern Kubernetes, he shares war stories about managing critical infrastructure and accidentally shutting down a company's […]
2025-01-1659 minHacker HistoryThe history of Marc BoorshteinHacker History sits down with Marc Boorshtein, we learn of his journey from tinkering with Doom shareware as a kid and getting free hardware from his Dad. Marc tells us about the early days of LDAP and Kerberos to modern Kubernetes, he shares war stories about managing critical infrastructure and accidentally shutting down a company's […]
2025-01-1659 min
The IaC PodcastBehind the Sessions of KubeCon NAJoin Ohad for a special KubeCon edition of The IaC Podcast, featuring conversations with community leaders about Kubernetes, Infrastructure as Code, and the growing influence of AI in shaping cloud infrastructure.Thank you to our amazing guests for this KubeCon edition:Solomon Hykes - Co-Founder of Dagger and DockerAndrew Martin - Co-Founder & CEO at ControlPlaneRotem Tamir - Co-Founder & CTO at ArigaMarc Boorshtein - CTO at Tremolo SecurityEldad Assis - Principal DevOps Architect...
2024-12-2050 min
Changelog Master FeedPublic safety Kubernetes (Ship It! #132)Marc Boorshtein from Tremolo Security joins Justin & Autumn to talk all about running Kubernetes in the public sector.
Join the discussionChangelog++ members save 8 minutes on this episode because they made the ads disappear. Join today!Sponsors:System Initiative – The future of DevOps automation (is here!) — System Initiative is an intuitive, powerful, collaborative replacement for Infrastructure as Code (IaC). The free tier is awesome (no credit card required) and you can get started in 3 clicks.
Retool – The low-code platform for developers to build internal tools — Some of the best teams out there tr...
2024-11-291h 07Ship It! Cloud, SRE, Platform EngineeringPublic safety KubernetesMarc Boorshtein from Tremolo Security joins Justin & Autumn to talk all about running Kubernetes in the public sector.
Join the discussionChangelog++ members save 8 minutes on this episode because they made the ads disappear. Join today!Sponsors:System Initiative – The future of DevOps automation (is here!) — System Initiative is an intuitive, powerful, collaborative replacement for Infrastructure as Code (IaC). The free tier is awesome (no credit card required) and you can get started in 3 clicks.
Retool – The low-code platform for developers to build internal tools — Some of the best teams out there tr...
2024-11-291h 07
The Security RepoSecuring Kubernetes Dashboards: Insights from Tremolo Security's CTOIn this episode of The Security Repo, Dwyane McDaniel and Marc Boorshtein delve into the intricacies of Kubernetes dashboard security. Marc, the CTO of Tremolo Security, brings his extensive experience in identity and access management to the table, discussing the challenges and best practices for securing Kubernetes dashboards. The conversation explores the importance of dashboards, common security pitfalls, and innovative solutions to enhance user access and safety. Tune in for valuable insights on navigating the complex landscape of Kubernetes security.
Show Notes
Learn more about Tremolo - https://www.tremolosecurity.com/
Follow Marc
Linkedin - https://www.linkedin.com...
2024-05-2739 min
Cloud Native CompassKubernetes Security with Identity & OIDCI interview Mark Boorshtein, the CTO of Tremolo Security, an open-source identity management company that focuses on authentication, authorization, identity, and automation. Mark explains that their most popular tool is Open Unison, which allows users to log in to their Kubernetes clusters with whatever authentication system they have, such as LDAP, AD, Okta, or Azure AD. Open Unison also provides secure access to the dashboard and integrates with other cluster management applications.
Next up we shift over to the issue of certificate revocation in Kubernetes. Mark explains that Kubernetes doesn't know how to handle certificate revocation, which can be a...
2023-05-2938 min
Cloud Native CompassKubernetes Security with Identity and OIDCI interview Marc Boorshtein, the CTO of Tremolo Security, an open-source identity management company that focuses on authentication, authorization, identity, and automation. Marc explains that their most popular tool is Open Unison, which allows users to log in to their Kubernetes clusters with whatever authentication system they have, such as LDAP, AD, Okta, or Azure AD. Open Unison also provides secure access to the dashboard and integrates with other cluster management applications.Next up we shift over to the issue of certificate revocation in Kubernetes. Marc explains that Kubernetes doesn't know how to handle certificate revocation, which...
2023-05-2938 min
PodCTL - Enterprise KubernetesKubernetes Extended Authentication ModelSHOW: 66SHOW OVERVIEW: Brian talks with Marc Boorshtein (@mlbian, CTO at Tremolo Security) about trends in Kubernetes security, and how to think about the Kubernetes Extended Authentication Model. SHOW NOTES:Try OpenShift 4 - http://try.openshift.comBeyond RBAC in OpenShift – Open Policy AgentOpenShift Commons Briefing: Securing OKD at Multiple LayersKubernetes Security SHOW TOPICS:Topic 1 - Welcome back to the show. Your focus is on security. What’s one...
2019-04-0526 min
PodCTL - Enterprise KubernetesSecurity: Identity Management, RBAC, Authentication and AuthorizationShow: 15Show Overview: Brian and Tyler continue their focus on Security with Marc Boorshtein (@mlbiam, CTO of @tremolosecurity), discussing Identity Management, Container and Kubernetes Authorization and Authentication, RBAC, and how IT teams evolve to manage security in more agile environments. Show Notes:PodCTL #14 - Security: Hosts, Registries, Content and Pipelines[Video] Identity Management and Compliance[Video] DevOps Identity Management[Website] Tremolo Security10 Layers of Container SecurityOpen Source k8s SSO projectOpen Source OpenShift Identity Manager projectTopic 1 - Let’s talk about User authentication in Kub...
2017-11-1325 min