Kubernetes Master Class: Declarative Security with Rancher, KubeLinter, and StackRox
As companies adopt containers and Kubernetes to accelerate application development, they’re wrestling with securing this new attack surface. Fortunately, the declarative, immutable nature of Kubernetes environments provides inherent security opportunities, and Kubernetes itself offers a broad set of native controls. However, these protections are not enabled by default, and many organizations are learning both the infrastructure aspects and the security aspects of Kubernetes in parallel.
In this Master Class, we’ll provide you with a blueprint for creating declarative infrastructure and Kubernetes clusters with the Rancher Kubernetes Engine (RKE). We’ll also tap into the many native controls available in Kubernetes to protect your cloud-native applications. We’ll discuss the most critical steps you can follow to lock down your Kubernetes environments, using the capabilities built into the OSS version of Kubernetes and any managed Kubernetes service or Kubernetes distribution.
- How to create declarative infrastructure and Kubernetes clusters
- Discuss and implement Kubernetes-native security controls
- Use network policies, admission control and resource limits to enhance security
- Implement security checks into the YAML file creation process