Explore the critical aspects of data security in Container Storage Interface (CSI) environments in this informative conference talk. Delve into the challenges of protecting stateful workloads from unauthorized access, both within and outside Kubernetes clusters. Learn about the inherent security models provided by Kubernetes and discover additional configurations to enhance data protection. Through a series of demonstrations, gain insights into securing Persistent Volume Claims and Persistent Volumes, implementing Pod Security Policies, managing file system permissions, and safeguarding common storage protocols like iSCSI and NFS. Understand the importance of securing CSI drivers within your cluster to create a robust defense against potential volume attacks.
Overview
Syllabus
CSI Volume Attacks – The SRE Strikes Back - Hendrik Land, NetApp
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Introduction to Using the Container Storage Interface - CSI Primitives
-
Kubernetes SIG Storage Introduction and Update - Current Projects and Future Directions
-
Protecting Stateful Workloads With CSI Snapshot
-
HDFS CSI Plugin: Speeding Up Kubernetes in On-Premises Big Data Clusters
-
Complete DR of Stateful Workloads, PVs and CSI Snapshots via Flux and Vault OSS
-
Kubernetes Secrets Management with Secrets Store CSI Driver
