View profile

SecOps Thursday - Issue #4 - A use case of Kubernetes authentication

This week brought a lot of Kubernetes related work which is always interesting. There are so many way
SecOps Thursday - Issue #4 - A use case of Kubernetes authentication
By Yuval Oren • Issue #4 • View online
This week brought a lot of Kubernetes related work which is always interesting. There are so many way of doing things so I had to keep my thinking cap on.
Kubernetes security is really a world of it’s own, especially when used to deliver on premise solutions. As far as the customer is concerned, you are responsible for the security of this black box.
It is easy to underestimate the work, but if you are just starting to secure your kubernetes deployment, here is a partial list of th
  1. Network Polices
  2. RBAC
  3. Permissions
  4. Secrets
  5. Vaults
  6. Docker Images
  7. Auditing
  8. Runtime security (Aqua / Twistlock)
The first article that I shared is an interesting use case for a company that runs multiple Kubernetes clusters with multiple tenants. It’s part of a series that I recommend reading as it gives a nice overview of some of the above topics.
If you are planning on using the Hashicorp Vault at one point, then the second link is useful for understanding the unseal process.

Kubernetes: Up & Integrated — Authentication
Shamir's Secret Sharing
How an international hacker network turned stolen press releases into $100 million
Did you enjoy this issue?
Yuval Oren

SecOps Thursday

If you don't want these updates anymore, please unsubscribe here
If you were forwarded this newsletter and you like it, you can subscribe here
Powered by Revue