Explore the evolving landscape of container security in this 26-minute conference talk by Ariel Shuper from Cisco. Delve into the challenges with Mutating Security Policy (MSP) and its deprecation, understanding the new security model and standards for secure container deployments. Learn about Pod security, Security Policy (SP) structure, and the importance of Admission Controllers. Discover the role of Open Policy Agent in implementing robust security measures, and gain insights into automation techniques for enhanced container protection. Equip yourself with valuable recommendations and a comprehensive summary to strengthen your container deployment security strategies.
Secure Container Deployments - Time for Refresh
Overview
Syllabus
Introduction
Ariels background
Pod security
SP structure
Policy
Why is MSP deprecated
Challenges with MSP
MSP is deprecated
New security model
Security standards
Recommendation
Admission Controller
Validate
Admission Controllers
Open Policy Agent
Implementation
Automation
Summary
Taught by
Linux Foundation
Tags
Related Courses
-
One Large Cluster or Lots of Small Ones - Pros, Cons and When to Apply Each Approach
-
Deep Dive into Open Policy Agent, Conftest, and GateKeeper - Kubernetes Policy in Action
-
Leveraging WebAssembly to Write Kubernetes Admission Policies
-
Deploying Pod Security Policies Using Kyverno - A New Approach
-
Dynamic Authorization and Policy Control for Kubernetes Clusters
-
Using Docker Content Trust with Kubernetes Admission Controllers to Secure Runtime
