Explore the principle of least privilege in Kubernetes through this 28-minute conference talk by Kaizhe Huang from Sysdig. Gain insights into implementing minimal access controls for Kubernetes components, focusing on subjects and privileges grant. Discover how to restrict workload privileges and understand critical concepts such as role-based access control (RBAC), namespaces, service accounts, roles, and role bindings. Learn about security mechanisms like Security Context, PodSecurityPolicy, and NetworkPolicy for enhancing Kubernetes workload security. Delve into the complexities of Kubernetes security and acquire practical knowledge for applying the least privilege principle in your cloud-native environments.
Overview
Syllabus
The Least Privilege of Kubernetes - Kaizhe Huang, Sysdig
Taught by
CNCF [Cloud Native Computing Foundation]
