Dive into a comprehensive exploration of Kubernetes security in this conference talk from BSidesSF 2017. Begin with an overview of essential Kubernetes concepts and components, laying the foundation for understanding the platform's architecture. Progress through an in-depth examination of authentication and authorization mechanisms within Kubernetes, gaining insights into how these crucial security aspects are implemented. Conclude by discovering how Hashicorp Vault's PKI backend can be leveraged to enhance Kubernetes security, including issuing certificates for transport security and authentication, as well as facilitating authorization through the embedding of group membership information in client certificates.
Overview
Syllabus
BSidesSF 2017 - Securing Kubernetes (Jesse Endahl)
Taught by
Security BSides San Francisco
Related Courses
-
Configuring and Managing Kubernetes Security
-
Certified Kubernetes Application Developer: Application Environment, Configuration, and Security
-
Securing Spring Applications with Hashicorp Vault
-
HashiCorp Vault Deep Dive - Zero Trust Security and Secret Management
-
Securing Kubernetes Deployments with HashiCorp Vault and Consul
-
Deploying HashiCorp Vault on Kubernetes - Part 7
