To begin with we all know that Kubernetes is dominating the container orchestration market nowadays.  Enterprise organizations across nearly all verticals, including those with strong security requirements, such as financial services, healthcare, government, and telecommunications, are deploying production applications to Kubernetes clusters. 

While this rapid adoption of Kubernetes shows just how disruptive these technologies have been, they have also led to new security problems.  Their widespread popularity and many organizations without proper security measures in place have made Kubernetes infra the perfect target for attackers.

This hand-on Security workshop teaches the attack techniques on prime targets of the cluster and basics of Kubernetes Security and secure configuration of  the  numerous moving parts within the Kubernetes cluster that must be properly hardened.

Wide range of Topics covered  in the workshop:

• Understanding the The Kubernetes attack surface
• Hand on attacking the Kubernetes cluster and its resources
• Securing host of ports and services on the cluster
• Hardening the Node, Pod, container and Images
• Secure configuration of Pod security policies and IAM (RBAC)
• Tightening Network policies
• Working with Gatekeepers – OPA
• References to Open Source security tooling and the resource landscape

Key takeaways by the end of this Hands on workshop

• Take home advanced actionable techniques to secure your kubernetes clusters like a Ninja.
• A commercial grade open source tool for continuous hunting and alerting for kubernetes security issues
• A self hosted production grade kubernetes playground with pure kubernetes misconfigurations
• A gitbook/pdf of the content presented

Attendees:

• Devops,Devsecops  and SRE professionals
• Developers
• Security Penetration testers, Engineers and Architects