Explore essential strategies for securing Kubernetes clusters in this 45-minute conference talk from All Things Open 2022. Learn about multi-layered security approaches, including hardening nodes, securing workloads, and inspecting containers for vulnerabilities. Discover open-source tools for identifying issues at each layer, from cluster configuration and static code analysis to container image scanning and software bill of materials (SBOM) monitoring. Gain insights into policy enforcement, resource limits, and behavior monitoring to build and maintain a secure Kubernetes environment. Walk away with key takeaways to enhance your organization's container and Kubernetes security practices.
Overview
Syllabus
Intro
Layers
Hardening
Cluster configuration
Static code analysis
Container image scanning
Software bill of materials (SBOM)
SBOM monitoring
Policy enforcement
Resource limits
Monitor behavior
Key takeaways
Taught by
All Things Open
Related Courses
-
Certified Kubernetes Security Specialist (CKS) Course
-
Infusing Security Into the Application Development Process
-
The Certified Kubernetes Security Specialist: What to Know and How to Pass
-
How to Secure Your Node.js Containers on Kubernetes With Best Practices
-
The Rise of Software Supply-Chain Attacks - How Secure is Your .NET Application
