Explore the critical aspects of securing secrets in Kubernetes environments through this informative conference talk. Delve into the challenges of credential management for organizations, including database credentials and access tokens. Examine the threat models surrounding secrets management tools like Hashicorp Vault and CyberArk Conjur, particularly in on-premises deployments targeted by ransomware attackers. Gain insights into hardening techniques for these tools and understand the potential vulnerabilities in secret injection processes for target workloads. Analyze attack vectors targeting persistent volumes storing secrets and learn about real-world threat scenarios. Watch a demonstration of how attackers can access secrets and discover potential security solutions, with a focus on Hashicorp Vault in the context of Kubernetes security.
Overview
Syllabus
Securing Secrets in K8s Environments - Rahul Jadhav, AccuKnox
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Managing Access and Secrets in HashiCorp Vault
-
HashiCorp Vault
-
Managing Secrets in Kubernetes Using GitOps Without Compromising Security
-
Effortless Secrets Management in Kubernetes - DevSecOps 2023
-
Deploying HashiCorp Vault on Kubernetes - Part 7
-
Secret Management Using HashiCorp’s Vault and New Secrets Operator - Mirantis Labs Tech Talks
