DevOps Conference 2018 Munich, 3 - 6 December 2018
The Conference for Continuous Delivery, Microservices,
Containers, Clouds and Lean Business

Kubernetes Security: from Image Hygiene to Network Policies

Session
This talk originates from the archive. To the CURRENT program
Till August 16 ✓ Transformation Day for free ✓ Raspberry Pi for free ✓ Save up to € 870 Register now
Infos
Tuesday, May 29 2018
14:45 - 15:45
Room:
MOA 7+8

This talk provides an overview of security concerns in the context of Kubernetes. We will focus on security best practices as well as tooling from a developer’s point of view. The goal is to familiarise developers with security features and provide suggestion around the following areas:

  • container image hygiene (how to select base images, OpenSCAP, etc.)
  • handling sensitive data (secrets, auditing)
  • non-privileged containers (based on http://canihaznonprivilegedcontainers.info and PodSecurityPolicy)
  • using Kubernetes RBAC (service accounts, default roles, securing your app)
  • service communication control (Network Policies, Istio) 

All best practices/recipes will be made available via a GitHub repo and I’ll demo some of them live.

Stay tuned:

Behind the Tracks

 

Container Technologies

Docker, Kubernetes, Mesos & Co

Microservices

Maximize development productivity

Continuous Delivery

Build, test and deploy agile

Cloud Platforms & Serverless

Cloud-based & native apps

Logging, Monitoring & Analytics

Handle the complexity of microservices applications

Security

DevSecOps for safer applications

Business & Company Culture

Radically optimize IT