Explore how to safeguard your infrastructure against both external and internal threats in this 33-minute CNCF conference talk. Learn to combine cloud-native security practices with confidential computing to protect and attest the integrity of a Kubernetes cluster. Discover the process of setting up the Constellation Kubernetes distribution on a public cloud provider, configuring signature validation for images, and implementing Tetragon for eBPF-based runtime enforcement. Gain valuable insights into protecting services even when the data center running in the cloud has been compromised.