Kubernetes Security Best Practices

Logo
Presented by

Or Azarzar, CTO at Lightspin

About this talk

What do you think of when you hear Kubernetes in cloud security? Native load balancing, dynamic scaling, self-healing, and rollback capabilities…? Us too! These are just some of our favorite kubernetes security best practices, and the reasons why we’ve seen such massive adoption of Kubernetes architecture in cloud security over the past few years. In this webishop, our CTO, Or Azarzar uses his 10+ years of experience to provide an introduction to the security controls of Kubernetes, including authentication and authorization, secrets management, and network controls. On the architecture side, he provides insight on how to securely set up the control plane and data plane, despite the lack of real separation between the two on Kubernetes. We will dive into security concepts in Kubernetes, including: - How to set up your Kubernetes environment, from how to securely set up cluster roles in RBAC, to implementing complex rules at the network level to control traffic. - Dangerous defaults currently included in basic Kubernetes deployments, and how to make small changes that can help you gain cloud security quick-wins. - Real-world attack paths, for example, ways attackers can bypass authorization controls, or exploit the control plane to take control. This webishop includes informative diagrams and a review of our hands-on lab demonstration, and by the end of it, you’ll have a clear understanding of the benefits of this orchestration platform, without opening up your organization to risky configurations or vulnerabilities.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (5)
Subscribers (349)
Lightspin’s cloud security platform protects cloud and Kubernetes environments throughout the development cycle and simplifies cloud security for security and DevOps teams. Using patent-pending advanced graph-based technology, Lightspin empowers cloud and security teams to eliminate risks and maximize productivity by proactively and automatically detecting all security risks, smartly prioritizing the most critical issues, and easily remediating them - from build to runtime. For more information, visit: https://www.lightspin.io/