Overview
Learn about critical security improvements and future directions for Ingress NGINX in this conference talk from KubeCon. Explore the challenges faced by this flexible Ingress controller, including eight significant CVEs and RCEs, and discover the new security hardening measures being implemented. Understand how annotation validations and other restrictive features will be enabled by default to create a more secure out-of-the-box experience. Get insights into the project's strategic decision to freeze core functionality additions and migrate capabilities like UDP/TCP Routing to Gateway API. Stay ahead of the curve as the speakers unveil the project's new name and outline their vision for maintaining robust security in Kubernetes ingress control.
Syllabus
Securing the Future of Ingress-Nginx - James Strong, Isovalent & Marco Ebert, Giant Swarm
Taught by
CNCF [Cloud Native Computing Foundation]