Explore Kubernetes security hygiene in this 50-minute webinar from the Cloud Native Computing Foundation. Learn about container lifecycle security, from build to deploy to run, and discover strategies for securing Kubernetes control elements. Dive into key topics including the open-source Kubei runtime scanner, Pod Security Profiles, advanced risk detection in deployment pipelines, network policy best practices, and Master node protection. Gain insights from industry experts on addressing both familiar and new security challenges in Kubernetes clusters, with a focus on early threat detection and risk mitigation for optimal security outcomes in microservices architectures.
Stay on Top of Ongoing Kubernetes Security Hygiene
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
portshift
Discussion Points
Classical Image Scan
The Challenges of the Classical Approach
Introducing Kubei, an Open Source Runtime Scanner
CD: Advanced detection of potential risks
Example of Advanced Risk Detection
Role Based Access Control in Kubernetes
Roles: What Can Go Wrong?
Containers Attack Anatomy
Kubernetes Pod Security Context: Deep View
What Happens if Pod Security Context isn't set
Kubernetes Pod Security Policy to the rescue
Network Policies: Out of Cluster Challenges
The Life Outside the Cluster: Non Containerized
Service Mesh: The Hard Way
Service Mesh: The Intuitive Way
API Server architecture flow
The Ideal Protection Scheme
Summary
Wrap Up + Shareables
Taught by
CNCF [Cloud Native Computing Foundation]
