Poison Control: Unifying Software and Content... Anmol Krishan Sachdeva & Ankit Kotnala, Google
Kubernetes Kyverno Ai Security Policy As Code Provenance Sbom C2pa Zero Trust Cloud Native Machine Learning Kubernetes Security Data Poisoning Cncf Google Cloud
This session from Google engineers introduces the Dual-Provenance Pattern for securing AI workloads on Kubernetes, using Kyverno as a Policy-as-Code gatekeeper to enforce cryptographic signatures on both software artifacts and AI model/content provenance via C2PA standards. It addresses the critical blind spot where AI models and training datasets remain unverified while container runtimes are secured via SBOMs and binary authorization. Ideal for platform engineers and security teams building zero-trust defense for AI pipelines.
Related videos
Policy-as-Code for LLM Inference: Cost & Security Guardrails - Sakalya Deshpande, SAP Labs
From Policy to Production: Implementing ISO27001/BSI IT-Gr... Marcus Ross, Hamburg Port Authority
Welcome & Opening Remarks - Cortney Nickerson, CNCF Ambassador
Webhook Topology and Admission Latency: Lessons from Migration - Tanat Lokejaroenlarb, Adevinta
From YAML to CEL: Understanding Kyverno’s New Policy Model - Kirti Goyal, DevRel @Keploy
CNCF On-Demand: Autonomous Agents on K8s – Durable Execution for AI
Best of KubeCon + CloudNativeCon Amsterdam 2026
Beyond Dashboards: Cultivating the Observability Mindset - O. Hope Amaechi-Okorie, JSON Schema
ChatLoopBackOff: Episode 78 (Cedar)
Keynote: Making Kubernetes for AI Optimized and Reproducible - Nathan Taber & Mark Chmarny (ASL)
Sponsored Keynote: Scaling Platform Ops with AI Agents: Troubleshootin... J. Palma & N. Yellin (ASL)
