Getting started with cloud native security
By Liz Rice (Aqua Security) and Michael Hausenblas (Amazon Web Services)
Monday 17th August 2020, 90 min tutorial session as part of KubeCon EU 2020
- 15:05 - 16:35 CEST
- 14:05 - 15:35 UK
- 9:05 - 10:35 US East Coast
This KubeCon EU 2020 tutorial will get you off the ground with Kubernetes security basics, using live demos and examples to work through yourself. We’ll start with possible attack vectors, to help you map out the threat model that applies to your cluster, so you can figure out where you need to focus your efforts for security. We’ll show you how to compromise a deployment with a pod running with a known vulnerability. Once you’ve had the attacker’s eye-view, we’ll walk you through the most important techniques and open source tools to prevent compromise.
- Using secure Kubernetes settings
- Including vulnerability scanning in your workflow
- Configuring pods to run securely (eg avoiding unnecessary privileges)
- Using GitOps to restrict user access to your cluster and provide an audit trail
You’ll leave this tutorial armed with practical actions for securing your deployment.