Flying Above the Clouds - Securing Kubernetes

Flying Above the Clouds - Securing Kubernetes

OWASP Foundation via YouTube Direct link

Spoiler: Containers Aren't Sandboxes

5 of 17

5 of 17

Spoiler: Containers Aren't Sandboxes

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Flying Above the Clouds - Securing Kubernetes

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 What is Kubernetes? Open-source system for deploying, scaling and managing containerized apps and services
  3. 3 Isolating Container Workloads, IRL
  4. 4 Container Manifest & Daemon
  5. 5 Spoiler: Containers Aren't Sandboxes
  6. 6 Container Isolation Models Via cgroups & namespaces
  7. 7 Cloud-Native Secure Architecture
  8. 8 Cluster and Namespace Scopes • Resources are scoped at the Cluster or Namespace
  9. 9 Control Plane & Core Components The Control Plane manages the cluster's state and schedules containers.
  10. 10 Authorization Mode
  11. 11 Authentication
  12. 12 Fixing the Problem Always use a unique service account per pod!
  13. 13 Role-Based Access Control
  14. 14 Create Roles & Bindings
  15. 15 Secrets Management
  16. 16 Dynamic Secrets
  17. 17 Conclusion Think about security early and anticipate future growth

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.