Securing Kubernetes in the Cloud - Amiran Alavidze

BSides Vancouver 2021 It’s clear that Kubernetes has won the container orchestration wars and is here to stay. The complexity, flexibility and rapid development cycle of Kuberenetes mean that Kubernetes security landscape varies significantly across deployments and is not well understood generally. This talk focuses on security of managed cloud Kubernetes deployments (EKS, AKS, GKE, and others), which provide a decent secure baseline that addresses the majority of recommendations you’ll find on the Internet. You’ll come out equipped with understanding of the Kubernetes threat model and actionable recommendations for securely running workloads in Kubernetes.