OWASP Ottawa: Kubernetes Security 101 / Storing Credentials
Event submitted on Monday, November 16th 2020, approved by Charles Villanueva ✓
This event has been tagged as follows:
(edit this info)
Conference Event Summary
The following description was either submitted by the Conference Organizer on Monday, November 16th 2020, or created by us.
Due to the COVID-19 (Coronavirus) pandemic, events will continue online on our YouTube channel.
Subscribe to our YouTube channel, set a reminder and you’ll get a notification as soon as we go live!
We will post information here and on all our other media (email, Twitter, etc.) as we are closer to the date.
7:00 EDT PM: Technical Talks
2. Kubernetes Security 101: Best Practices to Secure your Cluster
This talk aims to give an overview of how Kubernetes works and provides some best practices to secure your cluster whenever you are deploying a new cluster on your own or via managed services such as GKE, EKS, or AKS. We are going to cover everything from the Control Plane or the Master Node, starting with the API server, including etcd, RBAC, and network policies. Then, we’ll cover the worker nodes, kubelet, audit logs, and pods best practices. We’ll talk about the CIS Benchmarks for Kubernetes and the default configurations you need to worry about when deploying a new cluster. We’ll show how to use RBAC and assign roles and permissions to your cluster users. We’ll demonstrate how to enable audit logs for better visibility and later we’ll set up some network policies to avoid communication between pods and prevent any lateral movement from attackers.