Discover seven essential tools for enhancing Kubernetes cluster security in this 30-minute Devoxx conference talk. Explore the complexities of Kubernetes orchestration and learn how to address potential security vulnerabilities in both the cluster infrastructure and deployed workloads. Gain insights into implementing security best practices and leveraging powerful tools such as Vault, Kubernetes Secrets, CubeScore, QBScan, Falco, Open Policy Agent, and Supervisor to fortify your Kubernetes environment. Understand the inner workings of these tools and their specific applications in securing service accounts, enforcing trusted images, and monitoring for potential threats.
Overview
Syllabus
Intro
Security overview
Vault
Kubernetes Secrets
CubeScore
QBScan
How it works
Check all service accounts
Connect to a specific service account
Connect to other service accounts
Check outputs
Falco
How Falco works
How GCR works
Open Policy Agent
Enforce Trusted Images
Supervisor
Summary
Taught by
Devoxx
Related Courses
-
Certified Kubernetes Security Specialist (CKS) Course
-
Help! My Cluster Is On The Internet - Container Security Fundamentals
-
How to Secure a Kubernetes Cluster from Scratch
-
Kubernetes Security 101 - Best Practices to Secure Your Cluster
-
How to Secure Your Node.js Containers on Kubernetes With Best Practices
-
Argo - Real Enterprise-Scale with Kubernetes
