Explore the Kubernetes Common Configuration Scoring System (KCCSS) and kube-scan in this 32-minute conference talk. Learn how to assess and score the risk level of entire Kubernetes workloads, including runtime configurations, network settings, Pod Security Policies, and added privileges. Discover how KCCSS, an open-source framework based on the Common Vulnerability Scoring System (CVSS), categorizes risks associated with runtime settings and provides a global risk score for workloads. Gain insights into implementing KCCSS for DevSecOps practices and acquire best practices for securing Kubernetes applications. Presented by Julien Sobrier from Octarine at a CNCF event, this talk offers valuable knowledge for developers and end-users working with Kubernetes and other CNCF-hosted projects.
The Common Configuration Scoring System for Kubernetes Security
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
The Common Configuration Scoring System for Kubernetes Security - Julien Sobrier, Octarine
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
The Common Configuration Scoring System for Kubernetes Security
-
Data Center Security Management with Microsoft System Center
-
Getting to Know the Exploit Prediction Scoring System (EPSS)
-
Shedding Light on CVSS Scoring Inconsistencies: A User-Centric Study on Evaluating Widespread Vulnerabilities
-
Getting CVSS, NVD, and CVEs to Work for You - Standardizing and Scaling Your Vulnerability Risk Analysis
-
Find and Track the Hidden Vulnerabilities Inside Your Dependencies
